Re: [Freeipa-users] changing password on user using ldappasswd

On 01/06/2016 09:59 AM, FE9817 FE-DDIS.DK wrote: > Hi, > > Im trying to change password for a user, using ldap, but it hangs. Here is > what is done. > > :~$ ldappasswd -h idm.com -ZZ -p 636 -x -D > "uid=admin,cn=users,cn=accounts,dc=com" -W -S > "uid=test000,cn=users,cn=accounts,dc=com" -d9

Re: [Freeipa-users] changing password on user using ldappasswd

On Wed, Jan 06, 2016 at 08:59:22AM +, FE9817 FE-DDIS.DK wrote: > Hi, > > Im trying to change password for a user, using ldap, but it hangs. Here is > what is done. > > :~$ ldappasswd -h idm.com -ZZ -p 636 -x -D > "uid=admin,cn=users,cn=accounts,dc=com" -W -S >

[Freeipa-users] FreeIPA - Mixing clients using sssd for some and nscd/nslcd for others

Hello ! I send you this mail because I am using this topology : - FreeIPA 3.0.0-42 - RHEL6.6 - Two masters (replicated) - n clients My question is the following : May I use for some clients sssd and for others the couple nscd/nslcd ? I would like to perform tests to compare both and I wondering

Re: [Freeipa-users] IPA, AD Trust and Domain Local Groups

Hi, OK, clear. Thanks for the information! Winny Sumit Bose schreef op 06-01-2016 9:19: On Wed, Jan 06, 2016 at 08:56:27AM +0100, w...@dds.nl wrote: Hi all, Using an AD trust with IPA 4.2 all works well, but on the IPA/Linux site we're just not able to see AD "Domain Local Groups". Is

[Freeipa-users] changing password on user using ldappasswd

Hi, Im trying to change password for a user, using ldap, but it hangs. Here is what is done. :~$ ldappasswd -h idm.com -ZZ -p 636 -x -D "uid=admin,cn=users,cn=accounts,dc=com" -W -S "uid=test000,cn=users,cn=accounts,dc=com" -d9 -v -A Old password: Re-enter old password: New password: Re-enter

Re: [Freeipa-users] FreeIPA - Mixing clients using sssd for some and nscd/nslcd for others

On (06/01/16 10:44), bahan w wrote: >Hello ! > >I send you this mail because I am using this topology : >- FreeIPA 3.0.0-42 >- RHEL6.6 >- Two masters (replicated) >- n clients > >My question is the following : >May I use for some clients sssd and for others the couple nscd/nslcd ? I >would like to

Re: [Freeipa-users] Importing from shadow: ERROR: Constraint violation: pre-hashed passwords are not valid

On Wed, 06 Jan 2016, Simpson Lachlan wrote: Hi, New install of FreeIPA 4.2.0-15.el7.centos.3 on Centos 7.2.1511 (and I'm very new to FreeIPA) Following the advice I got from here: http://www.freeipa.org/page/NIS_accounts_migration_preserving_Passwords I dumped old shadow into a csv, then

Re: [Freeipa-users] changing password on user using ldappasswd

Thank you Sumit for the answer, it solved my problem. Cheers Emil ___ From: Sumit Bose Sent: Wednesday, January 6, 2016 1:03 PM To: FE9817 FE-DDIS.DK Cc: freeipa-users@redhat.com Subject: Re: [Freeipa-users] changing password on user using

Re: [Freeipa-users] FreeIPA 4.2.0 / CentOS 7.2 / DNS Strangeness (Sub-domains)

Please always include ipa-users list when replying. On 6.1.2016 11:48, Devin wrote: > Jan 06 01:37:45 idm.servers.lnx.ninja named-pkcs11[5524]: zone > lnx.ninja/IN: NS 'idm.servers.lnx.ninja' has no address records (A or ) > Jan 06 01:37:45 idm.servers.lnx.ninja named-pkcs11[5524]: zone >

[Freeipa-users] faking DNS autodiscovery of servers

Hello, I have some web applications that use LDAP for authentication/authorization, and which do not support LDAP auto-discovery. I'm wondering if it's possible to fake the auto-discovery of server. For instance, I could imagine using a DNS CNAME ldap_current.example.com which should point to a

Re: [Freeipa-users] IPA, AD Trust and Domain Local Groups

On Wed, Jan 06, 2016 at 08:56:27AM +0100, w...@dds.nl wrote: > Hi all, > > Using an AD trust with IPA 4.2 all works well, but on the IPA/Linux site > we're just not able to see AD "Domain Local Groups". > > Is that just not possible (a limitation of the current version that is), is > some extra

[Freeipa-users] IPA, AD Trust and Domain Local Groups

Hi all, Using an AD trust with IPA 4.2 all works well, but on the IPA/Linux site we're just not able to see AD "Domain Local Groups". Is that just not possible (a limitation of the current version that is), is some extra configuration needed of is just something wrong? Hope one can

[Freeipa-users] IE10 Dialogs close on Enter keypress

Hello, I found that when running FreeIPA Web UI on IE10 that modal dialogs close when enter is pressed. Normal functionality is to 'submit' the dialog on an enter keypress. I found a solution by adding a type="button" attribute to the close button of the dialog (in

[Freeipa-users] Trying to reset the admin password and failing...

Hi, Any idea how to fix this please? [root@vuwunicoipam002 ~]# ldappasswd -ZZ -D 'cn=directory manager' -W -S uid=admin,cn=users,cn=accounts,dc=xx,dc=xxx,dc=xx,dc=xx -H ldap://vuwunicoipam002.xxx New password: Re-enter new password: ldap_start_tls: Connect error (-11)

Re: [Freeipa-users] Fwd: NetworkError : invalid continuation byte with utf8 codec

Happy new year to all, just to point out that this also affect Fedora23 Free-IPA 4.2.0 and 4.3.0 from corps. locale are set to es_ES.UTF-8. Regards 2016-01-05 23:32 GMT-05:00 Fraser Tweedale : > On Mon, Jan 04, 2016 at 03:13:43PM +0100, Domineaux Philippe wrote: > > Hello,

Re: [Freeipa-users] Importing from shadow: ERROR: Constraint violation: pre-hashed passwords are not valid

> -Original Message- > From: Alexander Bokovoy [mailto:aboko...@redhat.com] > > >When I execute this, I get this error for every entry: "ipa: ERROR: > >Constraint violation: pre-hashed passwords are not valid" > > > >What have I done wrong? > Did you enable migration mode? The check in