Hi,
I have manged to deployed 1 ipa master and 1 ipa client with success on
centos 7.2 with freeipa v4.2. I also managed to create user and set
sshd-rules to for ttester user and also successfully get krb ticket
using *kinit
ttes...@example.my*. I am trying to deploy password-less SSH login with
My IPA LDAP/CS Master logs errors regularly (every few minutes) that seem o be
based upon an attempt to communicate with a replica that no longer exists.
Feb 25 14:38:04 ipa01 named[2161]: LDAP query timed out. Try to adjust
"timeout" parameter
Feb 25 14:38:04 ipa01 named[2161]: LDAP query
On Thu, 2016-02-25 at 16:56 +, Terry John wrote:
> Thanks for that. From what I've read there is no simple right answer. In 2013
> RedHat itself says to leave ChallengeResponseAuthentication set to no "due to
> security reasons".
>
> https://access.redhat.com/solutions/336773
We'll
Thanks for that. From what I've read there is no simple right answer. In 2013
RedHat itself says to leave ChallengeResponseAuthentication set to no "due to
security reasons".
https://access.redhat.com/solutions/336773
Setting PasswordAuthentication yes seems to leave all the other settings
On 25/02/16 12:29, Sumit Bose wrote:
On Thu, Feb 25, 2016 at 11:58:04AM +, lejeczek wrote:
On 25/02/16 09:32, Sumit Bose wrote:
On Thu, Feb 25, 2016 at 09:21:06AM +, lejeczek wrote:
On 25/02/16 08:21, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
On
On Thu, 2016-02-25 at 14:36 +, Terry John wrote:
> This turned out to be a setting in /etc/ssh/sshd_config which gets overridden
> by ipa-client-install. Needed to un-comment
>
> PasswordAuthentication yes
This is disabled because we enable ChallengeResponseAuthentication which
is a
Terry John wrote:
> This turned out to be a setting in /etc/ssh/sshd_config which gets
> overridden by ipa-client-install. Needed to un-comment
>
>
>
> PasswordAuthentication yes
Glad you got it fixed but I don't think ipa-client-install was
responsible for this change. It does make changes
This turned out to be a setting in /etc/ssh/sshd_config which gets overridden
by ipa-client-install. Needed to un-comment
PasswordAuthentication yes
Terry
From: freeipa-users-boun...@redhat.com
[mailto:freeipa-users-boun...@redhat.com] On Behalf Of Terry John
Sent: 18 February 2016 11:41
To:
On Thu, 2016-02-25 at 10:43 +0530, Supul Wickaramartna wrote:
>
> Hi,
>
>
>
> I have configured Solaris server ( 5.10 Generic_118833-33, sun4u sparc UNW,
> Sun-Fire-V240) as IPA client. ldap is working, ldap user can login with 'su'
> command and 'id' command displays ldap users identity
On Thu, Feb 25, 2016 at 01:48:20PM +0100, Harald Dunkel wrote:
> Hi Jakub,
>
> On 02/24/2016 09:24 AM, Jakub Hrozek wrote:
> >
> > Do you have debug_level=N in the [domain] section?
> >
>
> I have set N=5. Is this OK to set global debugging for all
> modules?
Putting the option to the
Hi Jakub,
On 02/24/2016 09:24 AM, Jakub Hrozek wrote:
>
> Do you have debug_level=N in the [domain] section?
>
I have set N=5. Is this OK to set global debugging for all
modules? I am used to set something like
debug_level = info
but the man page doesn't tell.
Regards
Harri
--
On Thu, Feb 25, 2016 at 11:58:04AM +, lejeczek wrote:
> On 25/02/16 09:32, Sumit Bose wrote:
> >On Thu, Feb 25, 2016 at 09:21:06AM +, lejeczek wrote:
> >>On 25/02/16 08:21, Sumit Bose wrote:
> >>>On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
> On 24/02/16 14:22, Sumit Bose
On 25/02/16 09:32, Sumit Bose wrote:
On Thu, Feb 25, 2016 at 09:21:06AM +, lejeczek wrote:
On 25/02/16 08:21, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
On 24/02/16 14:22, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 12:45:55PM +, lejeczek wrote:
On
On 24.2.2016 13:28, Martin Basti wrote:
>
>
> On 24.02.2016 12:53, Alexandre Borges wrote:
>>
>> Dear colleagues,
>>
>> How are you?
>>
>> I’ve been facing a horrible problem with RHEL 7.2 (and Oracle Linux 7.2)
>> when configuring IPA dnsforwardzone during the Active Directory integration.
>>
On Thu, Feb 25, 2016 at 09:21:06AM +, lejeczek wrote:
> On 25/02/16 08:21, Sumit Bose wrote:
> >On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
> >>On 24/02/16 14:22, Sumit Bose wrote:
> >>>On Wed, Feb 24, 2016 at 12:45:55PM +, lejeczek wrote:
> On 24/02/16 11:26, Sumit Bose
On 25/02/16 08:21, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
On 24/02/16 14:22, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 12:45:55PM +, lejeczek wrote:
On 24/02/16 11:26, Sumit Bose wrote:
On Wed, Feb 24, 2016 at 11:21:13AM +, lejeczek wrote:
he
On Wed, Feb 24, 2016 at 10:27:36PM +, lejeczek wrote:
>
>
> On 24/02/16 17:20, lejeczek wrote:
> >On 24/02/16 14:22, Sumit Bose wrote:
> >>On Wed, Feb 24, 2016 at 12:45:55PM +, lejeczek wrote:
> >>>On 24/02/16 11:26, Sumit Bose wrote:
> On Wed, Feb 24, 2016 at 11:21:13AM +,
On Wed, Feb 24, 2016 at 05:20:30PM +, lejeczek wrote:
> On 24/02/16 14:22, Sumit Bose wrote:
> >On Wed, Feb 24, 2016 at 12:45:55PM +, lejeczek wrote:
> >>On 24/02/16 11:26, Sumit Bose wrote:
> >>>On Wed, Feb 24, 2016 at 11:21:13AM +, lejeczek wrote:
> he everybody,
> my first
18 matches
Mail list logo
