Hello All,
We have a mixed RHEL environment (5.x, 6.x, x86, and x86_64). Our FreeIPA
server is running RHEL 6.4 x86_64 with ipa-server 3.0. My question is what
are the hurdles or feature limitations should I expect to encounter in this
mixed environment, especially in regards to the RHEL 5.x
Hi All,
Our current account management policy requires that users change their AD
passwords via a special portal, however I've noticed that this can be
bypassed by issuing passwd on a Linux system while logged in with AD
credentials, thus changing their AD password.
Any thoughts on the best way
...@redhat.com wrote:
On Wed, Aug 14, 2013 at 09:19:17AM -0400, Brian Lee wrote:
Hi All,
Our current account management policy requires that users change their AD
passwords via a special portal, however I've noticed that this can be
bypassed by issuing passwd on a Linux system while logged in with AD
...@redhat.com wrote:
On Wed, 2013-08-14 at 09:48 -0400, Brian Lee wrote:
Hi Sumit,
Thanks for the suggestion. I'll have to give this some thought, since
we have 100+ AD servers, this might not be well received by the AD
team. If anyone can think of a better mousetrap than this, let me
Hello everyone,
I understand this is well documented that we need to block AD from
establishing communication to the LDAP ports, but I've never heard an
explanation on why this is needed.
Additionally, In our environment, we have a 100+ AD servers. Do I need to
add an iptables rule for each AD
Hi Lynn,
I just checked this in my lab setup:
- Set up a new user on the FreeIPA server as 'ipatest'.
- Logged in to a Linux client configured for FreeIPA, it prompted me to
change my password.
- Successfully changed my password for ipatest. Verified this on another
machine.
- Furthermore, I