[Freeipa-users] MAKE Freeipa replica not work now

Hi all: 9444 port can be telnet ...Any idea ? the log show below as I don't have more idea... If I plan to migrate to same version of server what I have to copy ? as I saw step of migration also similar to replica so now stuck on the steps. Any Manual copy steps ? as I copy and paste the LDAP of

[Freeipa-users] 389-console and IPA

Greetings, I wonder if possible to use 389-console with default IPA installation on REHL 7. Primarily reason is to alter log settings

[Freeipa-users] staging area and group membership

Hello, Is it possible to directly add a user to certain groups when the user is defined in staging area ? -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project

[Freeipa-users] Trying To Debug AD Trust Quirks

Hello, I'm using AD trusts with FreeIPA 4.4.0 and am having a heck of a time with strange behavior. Some examples include: - Trust user's home directory sporadically getting set to '/' instead of /home/domain/user - Trust user losing HBAC privileges (granted via group membership) - Trust user

Re: [Freeipa-users] ipa-replica-manage failing to delete a node

"Linder, Rolf" writes: > mainly our synchronization stopped with uspidm02 (replica) logging: > > "[27/Mar/2017:11:57:39.756880208 +0200] NSMMReplicationPlugin - > agmt="cn=meTouspidm01.[domainname].[tld]" (uspidm01:389): Data > required to update replica

Re: [Freeipa-users] Migrate IPA cluster F21 -> C7

Bret Wortman wrote: > I'm studying the best way to migrate out IPA servers (there are two) > from F21 to C7. I _think_ the sequence of steps I need to perform is: > > 1. Build new C7 IPA server (ipa-c) and enable replication to it. > 2. Migrate CA functions from our existing CA server

[Freeipa-users] Migrate IPA cluster F21 -> C7

I'm studying the best way to migrate out IPA servers (there are two) from F21 to C7. I _think_ the sequence of steps I need to perform is: 1. Build new C7 IPA server (ipa-c) and enable replication to it. 2. Migrate CA functions from our existing CA server (ipa-a) to this new one

Re: [Freeipa-users] SSSD dyndns_update on machine with multiple IP address

On 03/27/2017 09:40 PM, Jakub Hrozek wrote: On Mon, Mar 27, 2017 at 06:34:24PM +0200, David Goudet wrote: Hi, Thanks to dyndns_update=True parameter, SSSD service on client machine updating host DNS entry in FreeIPA. Everything is fine on machines which have only one IP adress on network

[Freeipa-users] ipa-replica-manage failing to delete a node

Hello First, we really would like to thank the developers / community for the great work doing with FreeIPA! At our company, we're using a CentOS7 based FreeIPA installation (uspidm01 primary and uspidm02 replica) and it worked like a charm the last couple of months. Last week we suffered a