On 6.11.2014 16:41, Dmitri Pal wrote:
On 11/06/2014 10:00 AM, Martin Basti wrote:
On 06/11/14 14:58, Walter van Lille wrote:
Hi,
I need some assistance please.
I've taken over an IPA server to manage a few months ago, and it was
working fine until recently when it started acting up seemingly
On Thu, Nov 06, 2014 at 10:28:34PM -0500, Dmitri Pal wrote:
On 11/06/2014 08:20 PM, Thomas Lau wrote:
?Hi,
Is it possible to renew ticket once in a while for cronjob to run on
certain users? How do you guys run cronjob on Kerberos user without
getting ticket expire?
Sent from my
Forward message back to list
Original Message
Subject:Re: [Freeipa-users] dns stops working after upgrade
Date: Thu, 6 Nov 2014 21:42:55 +0100
From: Rob Verduijn rob.verdu...@gmail.com
To: Martin Basti mba...@redhat.com
Hi again,
I tried the update to 4.1.1
Hi,
Thanks for replying.
I am running Ubuntu 14 IPA client, here is the result when I try to run
kinit -R
tlau@mocha:~$ kinit -R
kinit: KDC can't fulfill requested option while renewing credentials
tlau@mocha:~$ klist
Ticket cache: FILE:/tmp/krb5cc_121843_rZ7eX7
Default principal:
On Fri, 07 Nov 2014, Sumit Bose wrote:
On Thu, Nov 06, 2014 at 10:28:34PM -0500, Dmitri Pal wrote:
On 11/06/2014 08:20 PM, Thomas Lau wrote:
?Hi,
Is it possible to renew ticket once in a while for cronjob to run on
certain users? How do you guys run cronjob on Kerberos user without
getting
On Thu, Nov 06, 2014 at 09:33:35PM -0800, Michael Lasevich wrote:
For what its worth, my issue was resolved when I rebooted the server.
Restarting sssd and/or clearing it's cache did not do it, but a full reboot
seems to have done it. Something much have been cached or some temp file I
Changed subject.
Rob CCed
On 07/11/14 09:52, Martin Basti wrote:
Forward message back to list
Original Message
Subject:Re: [Freeipa-users] dns stops working after upgrade
Date: Thu, 6 Nov 2014 21:42:55 +0100
From: Rob Verduijn rob.verdu...@gmail.com
To:
On Thu, Nov 06, 2014 at 07:27:04PM +, Craig White wrote:
-Original Message-
From: Lukas Slebodnik [mailto:lsleb...@redhat.com]
Sent: Thursday, November 06, 2014 9:34 AM
To: Craig White
Cc: t...@tetrioncapital.com; freeipa-users@redhat.com
Subject: Re: [Freeipa-users] unable to
On 11/05/2014 09:20 PM, Natxo Asenjo wrote:
On Wed, Nov 5, 2014 at 7:45 PM, Natxo Asenjo natxo.ase...@gmail.com wrote:
And I think I found it:
https://fedorahosted.org/freeipa/ticket/3727
permissions of that folder:
$ ls -ld publish/
drwxr-xr-x. 2 root root 73728 Jun 13 2013 publish/
I
On 11/05/2014 09:43 PM, Alexander Bokovoy wrote:
Hi,
Heads up for those who are using 2FA feature of FreeIPA 4.0 and 4.1.
A security issue was identified in the released versions of FreeIPA 4.0
and 4.1 that makes possible for users with enabled OTP token to
authenticate using only the second
hi Martin,
On Fri, Nov 7, 2014 at 10:46 AM, Martin Kosek mko...@redhat.com wrote:
Good! I am glad you fixed the problem. I added this case to
http://www.freeipa.org/page/Troubleshooting#CRL_gets_very_old
nice. Hopefully it will help someone.
I am wondering what caused the issue. In the
Hi all,
Either I was to worn out last night, or another update has happened.
This morning the directory server did start after the update.
local dns zones however where not available again after the update
ipa-ldap-updater did not help to fix it.
The are again only 7 DNS aci objects are still in
On 07/11/14 13:52, Rob Verduijn wrote:
Hi all,
Either I was to worn out last night, or another update has happened.
This morning the directory server did start after the update.
local dns zones however where not available again after the update
ipa-ldap-updater did not help to fix it.
The are
Hi List
I'm trying to configure a replica for a primary freeipa IdM server
(both CentOS 7, AD trusts configured on primary), but ipa-replica-install
fails with the following error:
--
ipa-replica-install -d --setup-ca --setup-dns --no-forwarders
Hello,
Yes this time there are
This section :
2014-11-07T13:10:03Z INFO Updating existing entry: cn=referential integrity
postoperation,cn=plugins,cn=config
SNIP
2014-11-07T13:10:03Z DEBUG Unhandled LDAPError: OPERATIONS_ERROR: {'desc':
'Operations error'}
2014-11-07T13:10:03Z ERROR Update
On 07/11/14 14:26, Rob Verduijn wrote:
Hello,
Yes this time there are
This section :
2014-11-07T13:10:03Z INFO Updating existing entry: cn=referential
integrity postoperation,cn=plugins,cn=config
SNIP
2014-11-07T13:10:03Z DEBUG Unhandled LDAPError: OPERATIONS_ERROR:
{'desc': 'Operations
Yup that solved it.
Everything looks ok now :-)
Thank you for you great effort.
Rob
2014-11-07 14:55 GMT+01:00 Martin Basti mba...@redhat.com:
On 07/11/14 14:26, Rob Verduijn wrote:
Hello,
Yes this time there are
This section :
2014-11-07T13:10:03Z INFO Updating existing entry:
What we do in our environment is create "service users" that are designated for certain tasks. Say you need to run a rsync job every night, after the user is created, you will need to create a keytab. Then copy the keytab file over to the box that the cronjob will run on. Then at the top of the
On 4.11.2014 16:57, Matthew Sellers wrote:
Hi Guys,
Thanks for the previous replies. I hate to dig up and old thread, but im
still banging my head on this. I am trying to configure IPA to send notify
to slaves servers on manual updates from the web or CLI tools.
Dynamic DNS updates from
On 7.11.2014 14:08, Traiano Welcome wrote:
Hi List
I'm trying to configure a replica for a primary freeipa IdM server
(both CentOS 7, AD trusts configured on primary), but ipa-replica-install
fails with the following error:
--
ipa-replica-install -d --setup-ca --setup-dns --no-forwarders
On 11/07/2014 03:05 PM, Rob Verduijn wrote:
Yup that solved it.
Everything looks ok now :-)
Thank you for you great effort.
Well, thank you for your patience. It will allow us to fix this bug in next
FreeIPA release, the patch was already submitted on freeipa-devel.
Thanks again!
Martin
-Original Message-
From: freeipa-users-boun...@redhat.com
[mailto:freeipa-users-boun...@redhat.com] On Behalf Of Jakub Hrozek
Sent: Friday, November 07, 2014 2:32 AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] unable to sudo
On Thu, Nov 06, 2014 at 07:27:04PM +, Craig
Hi Petr
On Fri, Nov 7, 2014 at 6:19 PM, Petr Spacek pspa...@redhat.com wrote:
On 7.11.2014 14:08, Traiano Welcome wrote:
Hi List
I'm trying to configure a replica for a primary freeipa IdM server
(both CentOS 7, AD trusts configured on primary), but ipa-replica-install
fails with the
On 7.11.2014 17:20, Traiano Welcome wrote:
Hi Petr
On Fri, Nov 7, 2014 at 6:19 PM, Petr Spacek pspa...@redhat.com wrote:
On 7.11.2014 14:08, Traiano Welcome wrote:
Hi List
I'm trying to configure a replica for a primary freeipa IdM server
(both CentOS 7, AD trusts configured on
On Fri, Nov 7, 2014 at 7:22 PM, Petr Spacek pspa...@redhat.com wrote:
On 7.11.2014 17:20, Traiano Welcome wrote:
Hi Petr
On Fri, Nov 7, 2014 at 6:19 PM, Petr Spacek pspa...@redhat.com wrote:
On 7.11.2014 14:08, Traiano Welcome wrote:
Hi List
I'm trying to configure a replica for a
On 11/07/2014 01:24 AM, Will Sheldon wrote:
On November 6, 2014 at 10:07:54 PM, Dmitri Pal (d...@redhat.com
mailto:d...@redhat.com) wrote:
On 11/07/2014 12:18 AM, Will Sheldon wrote:
Hello all :)
On the whole we are loving FreeIPA, Many thanks and much respect to
all involved, we’ve had a
Is there a way to add a Bind $GENERATE directive line to FreeIPA to
automatically name DHCP-assigned ranges?
In a file-based Bind installation, I can have the following line in the
forward example.com zone file:
$generate 80-250/1 wd${0,3,d}.example.com. A 192.168.0.$
(which adds records
hi all..
As we head into the weekend, I hope you all take time to play and
enjoy. At the same time, if you are online and have any ideas - are
there any good tuning suggestions for beefing up 389ds for an
environment with approx 4000 users and approx 1000 hosts?
My guess is the cache
On 11/07/2014 06:29 PM, Janelle wrote:
hi all..
As we head into the weekend, I hope you all take time to play and
enjoy. At the same time, if you are online and have any ideas - are
there any good tuning suggestions for beefing up 389ds for an
environment with approx 4000 users and approx
29 matches
Mail list logo