Hello!
We have a very large AD and IPA trusts with it.
Every time user tries to login to client server, on corresponding IPA server we
have a tons of messages like this:
[ipa_add_ad_memberships_get_next] (0x0020): There are unresolved external group
memberships even after all groups have been
Going to give this a try today.
Thanks so much for taking the time to work this out.
~J
On 8/24/15 2:01 AM, Jan Pazdziora wrote:
On Thu, Aug 20, 2015 at 02:26:43PM +0200, Jan Pazdziora wrote:
On Tue, Aug 18, 2015 at 02:58:50PM -0700, Janelle wrote:
Tried that -- but it gives a blank screen.
On Mon, Aug 24, 2015 at 07:00:00AM -0400, Arnold, Paul C CTR USARMY PEO STRI
(US) wrote:
I have been beating my head against the keyboard for the past 2 weeks trying
to figure this one out. I'm hoping I am missing something simple, as my next
course of action is to completely re-install IPA.
On 08/21/2015 07:17 PM, Benjamin Reed wrote:
I recently upgraded my CentOS7 machine to the latest el7.1 updates, and
had oomkiller trigger in the middle of yum upgrade.
I managed to recover by doing a number of things including restoring
dirsrv's data/config from backup and re-running
On 08/23/2015 07:04 PM, Ian Pilcher wrote:
Is it possible to add name- or port-based virtual servers to IPA's
Apache server (without interfering with any of the IPA functions)?
FreeIPA can play well with other stuff running on the same Apache as long as
you do not break it's Apache
I have been beating my head against the keyboard for the past 2 weeks
trying to figure this one out. I'm hoping I am missing something simple,
as my next course of action is to completely re-install IPA.
This is the primary error I am receiving:
ipa: DEBUG: Caught fault 4301 from server
On 21/08/15 15:21, bahan w wrote:
Hello !
I contact you because I notice something strange with IPA environment.
I created a group :
ipa group-add g1 --desc=my first group
Then I created a user with the GID of g1
GID1=`ipa group-show g1 | awk '/GID/ {printf(%s,$2)}'`
ipa user-add --first=u1
On Thu, Aug 20, 2015 at 02:26:43PM +0200, Jan Pazdziora wrote:
On Tue, Aug 18, 2015 at 02:58:50PM -0700, Janelle wrote:
Tried that -- but it gives a blank screen. I will try playing with it some
more. At least I know we are thinking in the same ballpark
I was able to set this up just fine
On 08/24/2015 08:30 PM, Rob Crittenden wrote:
Ian Pilcher wrote:
How can I test the CA proxy and RPC URIs? Is there anything else I
should check before I declare victory and start drinking?
Thanks!
This will exercise the basics:
ipa cert-show 1
As long as /ca is opened by IPA you should
Ian Pilcher wrote:
On 08/24/2015 01:47 AM, Martin Kosek wrote:
FreeIPA can play well with other stuff running on the same Apache as
long as
you do not break it's Apache configuration - like mod_nss running on
port 443,
CA proxy or the RPC connection URIs used by ipa tool or other tools.
So the
10 matches
Mail list logo