Hi,
Installing the original master should be nothing more than that command.
With some flags though maybe so my command was,
ipa-server-install -a secret123 -p 123Secret -domain=unix.vuw.ac.nz
-realm=UNIX.VUW.AC.NZ --setup-dns –forwarder=130.195.85.25
–forwarder=130.195.98.151 --no-reverse –s
Hello all,
While waiting for more suggestions on my thread "is not an IPA v2 Server", I
tried to install ipa server on other machines running fc16 and fc15.
When server is on fc16, I get the same error as when it's on fc17, wget failed:
No route to host.
when server is on fc15, wget still failed,
forget to mention that the server is installed by following this
https://docs.fedoraproject.org/en-US/Fedora/16/html/FreeIPA_Guide/installing-ipa.html
and the client has the same ports open as the server.
George
>
> From: george he
>To: Rob Crittenden
>Cc: "f
Hi Rob,
I was just thinking it's very unlikely the university would block http
connections from inside, but not ssh from outside. but I'll contact our ITS
anyways.
BTW, I am new to this LDAP and Kerberos thing, and I just followed the steps
outlined here
https://docs.fedoraproject.org/en-US/Fed
george he wrote:
Hello Rob,
Yes, I did the configuration earlier today. And I did kinit too.
It seems the web UI loads really slowly - the circular thing can turn
for minutes. So maybe I wasn't patient enough to let the page load.
A fair bit of javascript is loaded the very first time you visi
Maciej Sawicki wrote:
On Thu, Jun 14, 2012 at 8:00 PM, Simo Sorce wrote:
On Thu, 2012-06-14 at 15:34 +0200, Maciej Sawicki wrote:
bump
On Mon, Jun 11, 2012 at 2:11 PM, Maciej Sawicki
wrote:
Hi,
I (almost) managed to migrate groups from my previous server. That is
groups names migrated perf
On Thu, Jun 14, 2012 at 8:00 PM, Simo Sorce wrote:
> On Thu, 2012-06-14 at 15:34 +0200, Maciej Sawicki wrote:
>> bump
>>
>> On Mon, Jun 11, 2012 at 2:11 PM, Maciej Sawicki
>> wrote:
>> > Hi,
>> > I (almost) managed to migrate groups from my previous server. That is
>> > groups names migrated perf
Hello Rob,
Yes, I did the configuration earlier today. And I did kinit too.
It seems the web UI loads really slowly - the circular thing can turn for
minutes. So maybe I wasn't patient enough to let the page load.
I can ssh to the server and the client from my home, so I don't think there's
ano
Just experienced some weird behaviour on my Fedora 17 installation, just
wanted to check if this was expected.
I have the default config that requires a user to change their password
the first time they run kinit.
However I created a user and immediately used ipa-getkeytab as this user
will
And Simo Sorce writes:
> the underlying 389ds have a way to do that, but we do not
> expose it in IPA as it would make little sense there.
>
> That said we have plans to allow having 'branch office
> replicas' where only a subset of users is replicated to that
> branch replica. But these are future
george he wrote:
Hello all,
Here is some other information.
I'm setting this up for a lab in a university. The university has its
own kerberos server (and DNS server, which I use).
I'm not sure whether anybody has set a kerberos server for the
department, or some other labs used the department s
Hello all,
Here is some other information.
I'm setting this up for a lab in a university. The university has its own
kerberos server (and DNS server, which I use).
I'm not sure whether anybody has set a kerberos server for the department, or
some other labs used the department sub-domain.
But
On 06/18/2012 08:49 AM, Brian Wheeler wrote:
Hello
I'm a sysadmin at a smallish department at my university. We're
investigating FreeIPA to replace our homegrown openldap/perl script
user management stuff. The difficulty we're facing is that university
has standardized on Active Directory a
Hi Petr,
Yes, I still get the "failed: No route to host" error.
and I cannot connect to the webUI from the client, but I can open the web UI on
myserver.
Thanks,
George
>
> From: Petr Viktorin
>To: george he
>Cc: "freeipa-users@redhat.com"
>Sent: Monday, Ju
Hello
I'm a sysadmin at a smallish department at my university. We're
investigating FreeIPA to replace our homegrown openldap/perl script user
management stuff. The difficulty we're facing is that university has
standardized on Active Directory and they've got it pretty well locked
down. W
Hi,
If you run the wget manually (downloading to an existing directory
instead of /tmp/tmpjibrhe), do you get the same error?
Can you connect to the web UI from the client?
On 06/18/2012 04:12 PM, george he wrote:
Hello Petr,
I can ping or ssh to myserver with no problem.
btw, here are the p
Hello Petr,
I can ping or ssh to myserver with no problem.
btw, here are the ports I opened:
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -p tcp --dport 443 -j ACCEPT
iptables -A INPUT -p tcp --dport 389 -j ACCEPT
iptables -A INPUT -p tcp --dport 636 -j ACCEPT
iptables -A INPUT -
On 06/18/2012 03:44 PM, george he wrote:
Hello all,
here is the error message from /var/log/ipaclient-install.log on the
client machine:
Connecting to myserver|myserver ip|:80... failed: No route to host.
Retrieving CA from myserver failed.
Command '/usr/bin/wget -O /tmp/tmpjibrhe/ca.crt -T 15
Hello all,
here is the error message from /var/log/ipaclient-install.log on the client
machine:
Connecting to myserver|myserver ip|:80... failed: No route to host.
Retrieving CA from myserver failed.
Command '/usr/bin/wget -O /tmp/tmpjibrhe/ca.crt -T 15 -t 2
http://myserver/ipa/config/ca.crt' r
george he wrote:
Hello all,
I'm trying to install freeipa for a small lab with <10 computers, all
running fedora 17.
I seemed to have installed ipa server (without DNS) successfully,
# ipactl status
Directory Service: RUNNING
KDC Service: RUNNING
KPASSWD Service: RUNNING
MEMCACHE Service: RUNNI
Hello all,
I'm trying to install freeipa for a small lab with <10 computers, all running
fedora 17.
I seemed to have installed ipa server (without DNS) successfully,
# ipactl status
Directory Service: RUNNING
KDC Service: RUNNING
KPASSWD Service: RUNNING
MEMCACHE Service: RUNNING
HTTP Service:
21 matches
Mail list logo
