Re: [Freeipa-users] Multiple Domains and SSH

Hi, Dne 18.11.2014 v 23:53 Jakub Hrozek napsal(a): On 18 Nov 2014, at 23:12, Dmitri Pal wrote: On 11/18/2014 01:07 AM, Christoph Kaminski wrote: Hi I can reach each host here via ssh on multiple domains: host.mydom.int host mydom.net host.mgmt sss_ssh_knownhostproxy does work only on the

Re: [Freeipa-users] Problem migrating passwords fro NIS to IdM

Roderick Johnstone wrote: > On 18/11/2014 22:19, Dmitri Pal wrote: >> On 11/18/2014 12:57 PM, Roderick Johnstone wrote: >>> Hi >>> >>> I'm trying to migrate some nis accounts to RHEL 6 IdM while still >>> keeping the original passwords. >>> >>> I followed the instructions at: >>> http://www.freeipa

Re: [Freeipa-users] Problem migrating passwords fro NIS to IdM

> On 18 Nov 2014, at 23:23, Roderick Johnstone wrote: > > On 18/11/2014 22:19, Dmitri Pal wrote: >> On 11/18/2014 12:57 PM, Roderick Johnstone wrote: >>> Hi >>> >>> I'm trying to migrate some nis accounts to RHEL 6 IdM while still >>> keeping the original passwords. >>> >>> I followed the inst

Re: [Freeipa-users] Multiple Domains and SSH

> On 18 Nov 2014, at 23:12, Dmitri Pal wrote: > > On 11/18/2014 01:07 AM, Christoph Kaminski wrote: >> Hi >> >> I can reach each host here via ssh on multiple domains: >> >> host.mydom.int >> host mydom.net >> host.mgmt >> >> sss_ssh_knownhostproxy does work only on the domain which I have us

Re: [Freeipa-users] Problem migrating passwords fro NIS to IdM

On 18/11/2014 22:19, Dmitri Pal wrote: On 11/18/2014 12:57 PM, Roderick Johnstone wrote: Hi I'm trying to migrate some nis accounts to RHEL 6 IdM while still keeping the original passwords. I followed the instructions at: http://www.freeipa.org/page/NIS_accounts_migration_preserving_Passwords

Re: [Freeipa-users] Problem migrating passwords fro NIS to IdM

On 11/18/2014 12:57 PM, Roderick Johnstone wrote: Hi I'm trying to migrate some nis accounts to RHEL 6 IdM while still keeping the original passwords. I followed the instructions at: http://www.freeipa.org/page/NIS_accounts_migration_preserving_Passwords The passwords are in SHA-512 format

Re: [Freeipa-users] Integrating with NIS Domains and Netgroups

On 11/18/2014 02:13 AM, Zhong Qiang wrote: hi, I have some hosts installed centos4.8/6.5/5.9,and want to centralize identity/policy/authorization.but ipa client isn't compatible with centos4.8,so I try to configure FreeIPA integrated with NIS Domains. IPAserver:centos7 (+DNS) ni

Re: [Freeipa-users] Multiple Domains and SSH

On 11/18/2014 01:07 AM, Christoph Kaminski wrote: Hi I can reach each host here via ssh on multiple domains: host.mydom.int host mydom.net host.mgmt sss_ssh_knownhostproxy does work only on the domain which I have use to register to ipa (mgmt), on the other domains I get ever "The authentici

Re: [Freeipa-users] 3.0.0-42 Replication issue after Centos6.5->6.6 upgrade

No, not resolved yet I did test with GSSAPI (-Y) and like you it worked. :(   Will Sheldon On November 18, 2014 at 8:37:10 AM, dbisc...@hrz.uni-kassel.de (dbisc...@hrz.uni-kassel.de) wrote: Hi, On Fri, 7 Nov 2014, Dmitri Pal wrote: > On 11/07/2014 01:24 AM, Will Sheldon wrote: >> On November

[Freeipa-users] Problem migrating passwords fro NIS to IdM

Hi I'm trying to migrate some nis accounts to RHEL 6 IdM while still keeping the original passwords. I followed the instructions at: http://www.freeipa.org/page/NIS_accounts_migration_preserving_Passwords The passwords are in SHA-512 format and I have been testing the migration with comman

Re: [Freeipa-users] cloning joined systems

We doing it all the time just rename the system uninstall IPA client ( do not reboot) and run ipa client installed On Nov 18, 2014 11:47 AM, "Craig White" wrote: > Had a question from one of our engineers. It seems we are a lazy bunch > and have a sometime methodology of using vSphere/vmWare to

Re: [Freeipa-users] Questions about commande ipa user-add used to import NIS accounts

Edouard Guigné wrote: > Hello Rob, > > I looked for more informations about error message, and I found that : > http://comments.gmane.org/gmane.linux.redhat.freeipa.user/11952 > > So I change cn=config : > > ldapmodify -x -D "cn=directory manager" -w password > dn: cn=config > changetype: modify

[Freeipa-users] cloning joined systems

Had a question from one of our engineers. It seems we are a lazy bunch and have a sometime methodology of using vSphere/vmWare to clone running virtual machines. I cannot think of any way to take a virtual machine that has already been joined to RedHat iDM (freeipa), clone it and then deal with

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

On Tue, 18 Nov 2014 15:11:01 +0100 Andreas Ladanyi wrote: > Hi Simo, > >> Thats interesting. Now i can receive afs/cellname@REALM service > >> tickets with des-cbc-crc and aes256 key on the client but only > >> when i execute: > >> > >> kvno -e des-cbc-crc afs/cellname > >> > >> If i execute aklo

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Hi Simo, >> Thats interesting. Now i can receive afs/cellname@REALM service >> tickets with des-cbc-crc and aes256 key on the client but only when i >> execute: >> >> kvno -e des-cbc-crc afs/cellname >> >> If i execute aklog to obtain an afs token from tgt i get a >> afs/cellname@REALM service tick

Re: [Freeipa-users] 3.0.0-42 Replication issue after Centos6.5->6.6 upgrade

Hi, On Fri, 7 Nov 2014, Dmitri Pal wrote: On 11/07/2014 01:24 AM, Will Sheldon wrote: On November 6, 2014 at 10:07:54 PM, Dmitri Pal (d...@redhat.com ) wrote: On 11/07/2014 12:18 AM, Will Sheldon wrote: On the whole we are loving FreeIPA, Many thanks and much respect

Re: [Freeipa-users] Free ipa Configurations

Hello all I have a question regarding the log in in IPA well I didn't expect this to happen since last week all installation went smoothly and the adding of the clients as well but now I have another problem.  My first problem was ntp/ntpdate wasn't cooperating well and it won't update my fedora