On 2.12.2015 15:25, Günther J. Niederwimmer wrote:
> Hello All,
>
> Am Wednesday 02 December 2015, 21:10:31 schrieb Fraser Tweedale:
>> On Mon, Nov 30, 2015 at 02:46:13PM +0200, Alexander Bokovoy wrote:
>>> On Mon, 30 Nov 2015, Günther J. Niederwimmer wrote:
Hello ,
I have the
On 2.12.2015 22:02, Alexander Bokovoy wrote:
> On Wed, 02 Dec 2015, Andy Thompson wrote:
>> Since updating to RHEL 7.2 I've got issues with ns-slapd hanging the
>> system up after a period of time. The directory becomes unresponsive
>> to searches or any connections. After a restart I see
>>
>>
Hi all,
Using a RHEL or Centos 5.11 as a legacy client (using sssd) seems
to work.
I created an external group which is member of a posix group.
Putting an AD user in the external group works, but it seems to
take ages beofre it takes effect.
Hi,
We have strange problems in our environment.
After ipa-csreplica-manage re-initialize servers crash (it happens very often,
after second or third try, all dc, and pki replication gone. I've reinstalled
server and setup new replication).
There aren't any information in logs. It looks like
Sean Hogan wrote:
> Hi Rob,
>
> Thanks for the suggestion. I think that is what I have though. The
> sudorule applied for this user does not have sudo as an avail command
> unless it picks up /usr/bin/sudo -u user -i which I was thinking would
> only allow sudoing to user.
> HBAC services I have
> -Original Message-
> From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-
> boun...@redhat.com] On Behalf Of Petr Spacek
> Sent: Thursday, December 3, 2015 3:04 AM
> To: freeipa-users@redhat.com
> Subject: Re: [Freeipa-users] RHEL 7.2 update - ns-slapd hanging system
>
> On
Łukasz Jaworski wrote:
> Hi,
>
> We have strange problems in our environment.
>
> After ipa-csreplica-manage re-initialize servers crash (it happens very
> often, after second or third try, all dc, and pki replication gone. I've
> reinstalled server and setup new replication). There aren't any
>
Rob,
Yes.. in our setup allow_all has to be explicitly applied to a
persons/group HBAC for it to be available to them. This user has one
direct HBAC rule and its called Bob which only allows access to 2 servers
and the services I provided below and one indirect HBAC rule which allows
him
On 12/03/2015 08:33 AM, Andy Thompson wrote:
-Original Message-
From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-
boun...@redhat.com] On Behalf Of Petr Spacek
Sent: Thursday, December 3, 2015 3:04 AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] RHEL 7.2 update
Sean Hogan wrote:
> I had the log bumped to 8 and yes the allow_all HBAC rule is enabled
> however not associated with this user at all. This test only allows this
> user to hit 2 servers with individual HBAC rule to the 2 servers via the
> services I provided earlier.
>
allow_all applies to
10 matches
Mail list logo
