On Mon, 06 Jul 2015, Christopher Lamb wrote:
Hi Markus
The short answer is no.
The longer answer is:
We replicated only users, and manage groups within JIRA. The delegated LDAP
approach (Connecting to an Internal Directory with LDAP Authentication)
allows you to either synchronise groups and
Hi Markus
The short answer is no.
The longer answer is:
We replicated only users, and manage groups within JIRA. The delegated LDAP
approach (Connecting to an Internal Directory with LDAP Authentication)
allows you to either synchronise groups and group membership from FreeIPA
to Jira, or to
hi:
i changed cert lareadty but seemit still keep hisoty of godadday any help.??
www-COM...[06/Jul/2015:19:59:15 +0800] - SSL alert: Security
Initialization: Can't find certificate (*.wwwcom - GoDaddy.com, Inc.) for
family cn=RSA,cn=encryption,cn=config (Netscape Portable Runtime error
-8174 -
the cert already in httpd / ldap side. but it prompt error
[06/Jul/2015:19:59:16 +0800] - SSL failure: None of the cipher are valid
[06/Jul/2015:19:59:16 +0800] - ERROR: SSL Initialization phase 2 Failed.
*.wisers.com - COMODO CA Limited u,u,u
COMODO RSA Domain
Hi Simo,
On 06/25/15 17:47, Simo Sorce wrote:
Harald,
the reason I (and others) started this project many years ago is that
trying to set up all components myself was boring and highly error
prone, and you would always end up with a bag of parts that had a lot of
mismatches, and some
All, I am testing an IDM/IPA setup for out RHEL environment.
My current setup.
Windows
sjlab.local - domain one
mylab.local - domain two
sjlab and mylab are two separate AD Domain's sjlab is the primary domain
IDM will be integrated with. sjlab has a one way (outgoing) Forest type
On Mon, 29 Jun 2015, Harald Dunkel wrote:
Hi Simo,
On 06/25/15 17:47, Simo Sorce wrote:
Harald,
the reason I (and others) started this project many years ago is that
trying to set up all components myself was boring and highly error
prone, and you would always end up with a bag of parts that
Do u meant this :
i already add the cert to nss and even \etc\ipa\ ca.cert repalced
[root@(LIVE) slapd-Wwww-COM]$ certutil -d /etc/pki/nssdb -L
Certificate Nickname Trust
Attributes
SSL,S/MIME,JAR/XPI
COMODO RSA Domain Validation Secure Server CA
any command make it refresh ? it seem still getiing old godaddy hisotry?
2015-07-06 21:45 GMT+08:00 barry...@gmail.com:
Do u meant this :
i already add the cert to nss and even \etc\ipa\ ca.cert repalced
[root@(LIVE) slapd-Wwww-COM]$ certutil -d /etc/pki/nssdb -L
Certificate Nickname
On Tue, 30 Jun 2015, Steve Justice wrote:
All, I am testing an IDM/IPA setup for out RHEL environment.
My current setup.
Windows
sjlab.local - domain one
mylab.local - domain two
sjlab and mylab are two separate AD Domain's sjlab is the primary domain
IDM will be integrated with. sjlab
any command make it refresh ? it seem still getiing old godaddy hisotry?
2015-07-06 21:45 GMT+08:00 barry...@gmail.com:
Do u meant this :
i already add the cert to nss and even \etc\ipa\ ca.cert repalced
[root@(LIVE) slapd-Wwww-COM]$ certutil -d /etc/pki/nssdb -L
Certificate Nickname
On 07/06/2015 09:54 AM, Rob Crittenden wrote:
barry...@gmail.com wrote:
server 1
ipa-replica-manage list
Segmentation fault (core dumped)
server 2
ipa-replica-manage list
Can't contact LDAP server
but it seem still syn as i add new ac then server 2 have
i delete server2 's anme server 1
Rob,
Isn't it impossible to install a CA on a replica when it's master died ?
I know there is normally one CA, but this is kinda confusing me so I'm
testing out scenarios.
Thanks,
Matt
2015-07-06 18:10 GMT+02:00 Matt . yamakasi@gmail.com:
Hi Rob,
OK, I had difficulties with that and
On Mon, 2015-07-06 at 10:11 -0700, Janelle wrote:
Hello all,
Is there any known bug that would cause:
Password change failed. Server message: Current password's minimum life
has not expired
Here is the environment/process (7.1 with IPA 4.1.4) --
1. reset a user's PW so they are forced
Small update on this.
The replica without CA is not going to find any CA as the master is
dead so we need a CA.
The question is how to approach, you have a replica with only ldap
information and no CA.
Is it possible to create a split-brain like, install IPA1 as a normal
ipa server, so it
Hello all,
Is there any known bug that would cause:
Password change failed. Server message: Current password's minimum life
has not expired
Here is the environment/process (7.1 with IPA 4.1.4) --
1. reset a user's PW so they are forced to change it.
2. they login and get the Your password
I've got a couple warnings in different IPA installs that I'm not sure how to
find what values I should increase each config setting to.
In one install I'm seeing the following
[03/Jul/2015:22:03:02 -0400] connection - conn=16143 fd=122 Incoming BER
Element was too long, max allowable is
-Original Message-
From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-
boun...@redhat.com] On Behalf Of Rich Megginson
Sent: Monday, July 6, 2015 2:05 PM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] nsslapd-maxbersize and cachememsize
On 07/06/2015 11:49 AM,
barry...@gmail.com wrote:
server 1
ipa-replica-manage list
Segmentation fault (core dumped)
server 2
ipa-replica-manage list
Can't contact LDAP server
but it seem still syn as i add new ac then server 2 have
i delete server2 's anme server 1 still delte.
I'd start with the seg fault.
Hello,
I have a KDC set up on a Linux virtual host, known as ldap.abc, which has a
FreeIPA server running on it. I am trying to get a TGT from it, from my
Windows 7 Enterprise machine. I am able to easily interact with it from other
Linux hosts, but I am not having any luck from the windows one.
Matt . wrote:
Hi All,
I'm cleaning up and playing around with some old dev setups and
reviewing these tests.
This is a replica setup but the replica is no CA. Now I'm testing out
how to manage cluster when I remove the ipa1 (CA) and create a new
replica with CA from the ipa2.
IPA2 should
server 1
ipa-replica-manage list
Segmentation fault (core dumped)
server 2
ipa-replica-manage list
Can't contact LDAP server
but it seem still syn as i add new ac then server 2 have
i delete server2 's anme server 1 still delte.
--
Manage your subscription for the Freeipa-users mailing list:
barry...@gmail.com wrote:
Do u meant this :
i already add the cert to nss and even \etc\ipa\ ca.cert repalced
[root@(LIVE) slapd-Wwww-COM]$ certutil -d /etc/pki/nssdb -L
Certificate Nickname Trust
Attributes
SSL,S/MIME,JAR/XPI
COMODO RSA Domain
Hi All,
I'm cleaning up and playing around with some old dev setups and
reviewing these tests.
This is a replica setup but the replica is no CA. Now I'm testing out
how to manage cluster when I remove the ipa1 (CA) and create a new
replica with CA from the ipa2.
IPA2 should become CA and out
Haiden, Scott B. wrote:
Hello,
I have a KDC set up on a Linux virtual host, known as ldap.abc, which has a
FreeIPA server running on it. I am trying to get a TGT from it, from my
Windows 7 Enterprise machine. I am able to easily interact with it from
other
Linux hosts, but I am not having
25 matches
Mail list logo
