Sylvain Angers wrote:
Hello
Someone did delete the admin account by mistake, how can we recover from
this?
You might want to have a look on this, There is a RFE which will prompt you
before you delete some important things.
https://fedorahosted.org/freeipa/ticket/2560
On 05/10/2012 02:24 AM, Steven Jones wrote:
Hi,
In case everyone else is asleep now..
Do you have access to RH documentation? the 6.3beta admin guide section 18.8
talks about why and how to make a replicate a master.
Just for completeness:
Documentation is publicly available:
On Tue, May 08, 2012 at 09:47:41PM +, Steven Jones wrote:
Hi,
Attached is a munin graph of what looks like a memory leak.I suspect (if
you look at the munin monthly month graph) we had no issue until I think we
patched..I need to ask my admins if they did patch ...(they are
On Thu, 2012-05-10 at 03:58 +0400, free...@noboost.org wrote:
On Wed, May 09, 2012 at 01:21:39PM +0200, Petr Spacek wrote:
On 05/09/2012 03:31 AM, Dan Scott wrote:
On Tue, May 8, 2012 at 8:45 PM,free...@noboost.org wrote:
On Tue, May 08, 2012 at 09:43:13AM -0400, Rob Crittenden wrote:
On 05/09/2012 06:18 PM, Steven Jones wrote:
Hi,
Thanks so I will remove the sec=sys bit and re-test..and then I
assume it will be kerberos only.
This is not true, it's documented in the exports man page how you can
assign different permissions depending on the security type. For
On 05/09/2012 08:47 PM, Steven Jones wrote:
Removed the sys: and now no IPA'd client can mount.oh joy
Hehe, this is typical (and frustrating) for fresh NFS+Kerberos setups.
it's very easy to miss a little detail and not get much back as to why
it's not working. I'd suggest going
On 05/10/2012 03:11 PM, Simo Sorce wrote:
On Thu, 2012-05-10 at 03:58 +0400, free...@noboost.org wrote:
On Wed, May 09, 2012 at 01:21:39PM +0200, Petr Spacek wrote:
On 05/09/2012 03:31 AM, Dan Scott wrote:
On Tue, May 8, 2012 at 8:45 PM,free...@noboost.org wrote:
On Tue, May 08, 2012 at
On 05/09/2012 10:24 PM, Rob Crittenden wrote:
Sylvain Angers wrote:
Hello
Someone did delete the admin account by mistake, how can we recover from
this?
Fortunately there is nothing really special about the admin account except
that they are a member of the admins group, that is the important
THe problem with the cross realm trust support as I understand it is that it
requires you to populate posix attributes in AD, which many AD admins are
hesitant to do. You have to install the AD services for unix pack and create
metadata object in the directory for tracking UID and GID and then
On Thu, 2012-05-10 at 09:27 -0700, Brian Cook wrote:
THe problem with the cross realm trust support as I understand it is
that it requires you to populate posix attributes in AD, which many AD
admins are hesitant to do. You have to install the AD services for
unix pack and create metadata
Hi Petr and all,
All the chapter your have pointed out is read many times, but that doesn't
help at all.
My problem is: the Dogtag system ran on the IPA master ONLY before the IPA
Master crashes. Now I have to do the following:
1, install and run Dogtag system on IPA replica -- the
We're finally implementing IPA in our company (migrating from Sun
Identity Manager populated LDAP + manually maintained netgroups and
sudoers also in LDAP). I think I understand how to migrate these parts
to IPA, but the dogtag part is quite foreign currently..
We already has two private PKI
David Copperfield wrote:
Hi Petr and all,
All the chapter your have pointed out is read many times, but that
doesn't help at all.
My problem is: the Dogtag system ran on the IPA master ONLY before the
IPA Master crashes. Now I have to do the following:
1, install and run Dogtag system on IPA
Jan-Frode Myklebust wrote:
We're finally implementing IPA in our company (migrating from Sun
Identity Manager populated LDAP + manually maintained netgroups and
sudoers also in LDAP). I think I understand how to migrate these parts
to IPA, but the dogtag part is quite foreign currently..
We
Hi,
Pretty sure I followed the RH 6.3beta doc exactly...it all worked until I found
that non-IPA'd clients could also connectso if I put sys: back it should be
fineso its the kerberos bit or export options.
I have raised a case with RH support for help and also the IPA NFS will need
On 05/10/2012 03:57 PM, David Copperfield wrote:
Hi Rob, Petr and all,
Because recently crashes of my IPA master and IPA replicas servers,
I'm thinking of methods of backup/restore IPA user data: users,
groups, host and server certificates etc.
It's said that the only official way is to
Hi Rich and all,
Thanks for correction. They are db2ldif.pl and ldif2db.pl scripts, which are
originally for 389 Directory Servers' backup and restore purposes.
There are no IPA tools for IPA system backup and restore. Is there a plan to
develop tools like ipa2ldif.pl and ldif2ipa.pl soon?
On 05/10/2012 04:37 PM, David Copperfield wrote:
Hi Rich and all,
Thanks for correction. They are db2ldif.pl and ldif2db.pl scripts,
which are originally for 389 Directory Servers' backup and restore
purposes.
There are no IPA tools for IPA system backup and restore. Is there a
plan to
Hi Rich and all,
the '-r' option to db2ldif.pl doesn't work neither, it make few difference.
My command, backup and restore commands on the IPA replica are:
db2ldif.pl -D 'cn=Directory Manager' -w - -r -s 'dc=example,dc=com'
ldif2db.pl -D 'cn=Directory Manager' -w - -i
OK,
that means the steps below:
1) on IPA replica, lets create 4 IPA users: A,B,C and D. Now make a backup
with 'db2ldif.pl -r ...'
2) on IPA replica, delete the user D. 'ipa user-del D'.
3, on IPA master, delete the user C. 'ipa user-del C'.
4, now check on other IPA master and IPA
Hi,
Acrobat reader Firefox won't load on Centos 5.8 (odd)
Server:
Red Hat Enterprise Linux Server release 6.2 (Santiago)
- ipa-admintools-2.1.3-9.el6.x86_64
- ipa-client-2.1.3-9.el6.x86_64
- ipa-pki-ca-theme-9.0.3-7.el6.noarch
- ipa-pki-common-theme-9.0.3-7.el6.noarch
-
On 05/10/2012 07:54 PM, David Copperfield wrote:
OK,
that means the steps below:
1) on IPA replica, lets create 4 IPA users: A,B,C and D. Now make a
backup with 'db2ldif.pl -r ...'
2) on IPA replica, delete the user D. 'ipa user-del D'.
3, on IPA master, delete the user C. 'ipa user-del
On Fri, 2012-05-11 at 06:49 +0400, free...@noboost.org wrote:
Hi,
Acrobat reader Firefox won't load on Centos 5.8 (odd)
Server:
Red Hat Enterprise Linux Server release 6.2 (Santiago)
- ipa-admintools-2.1.3-9.el6.x86_64
- ipa-client-2.1.3-9.el6.x86_64
-
On Thu, May 10, 2012 at 11:12:58PM -0400, Simo Sorce wrote:
On Fri, 2012-05-11 at 06:49 +0400, free...@noboost.org wrote:
Hi,
Acrobat reader Firefox won't load on Centos 5.8 (odd)
Server:
Red Hat Enterprise Linux Server release 6.2 (Santiago)
- ipa-admintools-2.1.3-9.el6.x86_64
24 matches
Mail list logo
