Hi there,
Is the following correct or incorrect?
Say I want to build a triangle of ipa replicas. A - B - C - (back to A)
I do ipa-server-install on A
I do ipa-replica-prepare on A ... transfer files to B
I do ipa-replica-install on B
then:
Option ONE:
I do ipa-replica-prepare on B ... transfer
- Original Message -
From: James purplei...@gmail.com
To: freeipa-users@redhat.com
Sent: Thursday, July 3, 2014 2:10:27 AM
Subject: [Freeipa-users] FreeIPA replica topologies
Hi there,
Is the following correct or incorrect?
Say I want to build a triangle of ipa replicas. A - B
Please keep relies on the list.
barry...@gmail.com wrote:
I saw the error beloe and errpr log is it related ?
29/Jun/2014:02:00:58 +0800] slapd_ldap_sasl_interactive_bind - Error:
could not perform interactive bind for id [] mech [GSSAPI]: LDAP error
-2 (Local error) (SASL(-1): generic
Yes they are running. Server 1 can syn to server2 but error at server 2
like this.
2014/7/3 下午10:14 於 Rob Crittenden rcrit...@redhat.com 寫道:
Please keep relies on the list.
barry...@gmail.com wrote:
I saw the error beloe and errpr log is it related ?
29/Jun/2014:02:00:58 +0800]
On Thu, Jul 3, 2014 at 3:39 AM, Simo Sorce sso...@redhat.com wrote:
Option TWO is preferable if you have the CA only on A.
You should be able to run the connect command on any administrative host
IIRC.
Thanks for the reply!
--
Manage your subscription for the Freeipa-users mailing list:
barry...@gmail.com wrote:
Yes they are running. Server 1 can syn to server2 but error at server 2
like this.
How do you know server 1 is syncing with server 2?
On server 1 I'd run:
ipa-replica-manage list -v `hostname`
This will show the replication status.
And what does ipactl status show
Hello everyone, for some time i was trying to make Kolab Groupwere to work
with FreeIPA and after some research is now working. However the
modification made in FreeIPA makes me wonder if some how limit the
functions of the software.
Changes Made:
Creation of
OU=Groups (Don't want to mix
On 07/03/2014 04:09 PM, Carlos Raúl Laguna wrote:
Hello everyone, for some time i was trying to make Kolab Groupwere to
work with FreeIPA and after some research is now working.
Great!
However the modification made in FreeIPA makes me wonder if some how
limit the functions of the software.
In cn=config
a extensibleObject whit a domainRelatedObject and aci (require by kolab)
Not sure what this means - does this mean you added objectclass:
extensibleObject to dn: cn=config?
Thanks for the fast reply, and Yes, it is required so kolab can check wish
is the primary domain. Thanks for
Just sure now one side flow is broken, if u update server1 , it 100% work
server2 will upgrade.
but if u update server2 there is chance non-syn e.g it create username in
server1 with posfix grp ok
but in server2 it only created posfix grp but no username /attribute it
occur serveral times. I have
10 matches
Mail list logo
