Yes - Dmitri is correct.
Our purchased IAM product has LDAP connectors. It is possible to customize to
develop other connector protocols but it requires tweaking the core product
code - this adds risk and, if not careful, could break our support with vendor
or increase operational risk to a
On 02/12/2013 08:30 AM, Christian Horn wrote:
On Mon, Feb 11, 2013 at 09:05:40PM +, Steven Jones wrote:
Personally Im very worried, 6.2 to 6.3 went badly and this looks like a bigger
upgrade
I might miss something.. but cant one create a throw away replica
of the old environment, use that
Can you tell me how update my ipa's files once when ticket
https://fedorahosted.org/freeipa/ticket/3306 will be fixed ?
Should I have to do 'yum update ipa*' ?
Is it possible to ipa to send a email to user when his account is about to
expire (the current date is near krbprincipalexpiration
James James wrote:
Can you tell me how update my ipa's files once when ticket
https://fedorahosted.org/freeipa/ticket/3306 will be fixed ?
Should I have to do 'yum update ipa*' ?
Once it gets fixed upstream and packaged into a release, yes, that is
what you would do.
Is it possible to
On 02/12/2013 01:40 PM, Rob Crittenden wrote:
Is it possible to ipa to send a email to user when his account is about
to expire (the current date is near krbprincipalexpiration date) ?
Not currently. In 3.0+ we will provide a notice when one logs into the
WebUI but that's it.
We can't be sure
Trouble is getting the rpms to upgrade...
regards
Steven Jones
Technical Specialist - Linux RHCE
Victoria University, Wellington, NZ
0064 4 463 6272
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Christian
We have Sat.
Create a clone channel of RHEL6.3 say today. You then have a known patch set
channel that wont change, point the IPA servers at it.
So we have a raw/std RHEL channel in Sat, a testing channel that is 2~4 weeks
old and a prod channel we clone off the testing channel(s) once we
Hi:
Assumption: Accounts have been provisioned in IPA.
Can the IPA provisioned accounts be subsequently managed by LDAP calls from
an external system? Examples: password update, group membership.
Thank you.
___
Freeipa-users mailing list
It Meme wrote:
Hi:
Assumption: Accounts have been provisioned in IPA.
Can the IPA provisioned accounts be subsequently managed by LDAP calls
from an external system? Examples: password update, group membership.
Password update via LDAP: yes
Group membership is just properly adding a member
Steven Jones wrote:
Trouble is getting the rpms to upgrade...
Not sure what you mean. There were some bumps in upgrading IPA v2.1 to
2.2 but they were unrelated to the rpms. The problem was in the LDAP
updater and they were generally fairly easily resolved. The resulting
upgraded server was
Hi,
My cloned copy of IPA is in an isolated network so it has no access to our Sat
server or the Internet.
So in production we'd just do a yum update, but in the isolated environment I
cant do that so the test isnt real world.
regards
Steven Jones
Technical Specialist - Linux RHCE
Hi-
I'm new to FreeIPA. I'm installing on an up-to-date Fedora 18 system from the
freeipa packages available with Fedora 18. When running ipa-server-install,
the install process fails here:
Configuring certificate server (pki-tomcatd): Estimated time 3 minutes 30
seconds
[1/20]: creating
Chuck Lever wrote:
Hi-
I'm new to FreeIPA. I'm installing on an up-to-date Fedora 18 system from the
freeipa packages available with Fedora 18. When running ipa-server-install,
the install process fails here:
Configuring certificate server (pki-tomcatd): Estimated time 3 minutes 30
On Feb 12, 2013, at 4:24 PM, Rob Crittenden rcrit...@redhat.com wrote:
Chuck Lever wrote:
Hi-
I'm new to FreeIPA. I'm installing on an up-to-date Fedora 18 system from
the freeipa packages available with Fedora 18. When running
ipa-server-install, the install process fails here:
Thanks guys for your answers.
2013/2/12 John Dennis jden...@redhat.com
On 02/12/2013 01:40 PM, Rob Crittenden wrote:
Is it possible to ipa to send a email to user when his account is about
to expire (the current date is near krbprincipalexpiration date) ?
Not currently. In 3.0+ we will
Chuck Lever wrote:
On Feb 12, 2013, at 4:24 PM, Rob Crittenden rcrit...@redhat.com wrote:
Chuck Lever wrote:
Hi-
I'm new to FreeIPA. I'm installing on an up-to-date Fedora 18 system from the
freeipa packages available with Fedora 18. When running ipa-server-install,
the install process
Rob Crittenden wrote:
Chuck Lever wrote:
On Feb 12, 2013, at 4:24 PM, Rob Crittenden rcrit...@redhat.com wrote:
Chuck Lever wrote:
Hi-
I'm new to FreeIPA. I'm installing on an up-to-date Fedora 18
system from the freeipa packages available with Fedora 18. When
running ipa-server-install,
On 02/12/2013 01:21 PM, rashard.ke...@sita.aero wrote:
Thanks for all the replies, We are using Red Hat Satellite Server to
handle Yum updates but I am still getting a grasp on how it works.
After talking to one of our admins, I was told that it should not do a
major version upgrade without
On 02/12/2013 12:42 PM, It Meme wrote:
Yes - Dmitri is correct.
Our purchased IAM product has LDAP connectors. It is possible to customize to
develop other connector protocols but it requires tweaking the core product
code - this adds risk and, if not careful, could break our support with
Thank you for your reply.
Could there be anyway that accounts can be provisioned to IPA, via LDAP,
from existing IAM system?
The newly provisioned accounts can be temporarily stored in IPA's 389
Directory Server, and subsequently an automated task can IPA-ize the
accounts (i.e. via the Python
20 matches
Mail list logo