Re: [Freeipa-users] DNS / Allow PTR sync

2012-11-06 Thread Petr Spacek
Hello Mike, are you talking about IPA WebUI or CLI or DNS dynamic update mechanism? On which distribution and IPA version? On 11/05/2012 10:35 PM, Michael Mercier wrote: Hello, A couple of questions regarding DNS / Allow PTR sync. 1. If you have a zone 'example.com' and you enable Allow

Re: [Freeipa-users] DNS / Allow PTR sync

2012-11-06 Thread Martin Kosek
On 11/06/2012 10:38 AM, Petr Spacek wrote: Hello Mike, are you talking about IPA WebUI or CLI or DNS dynamic update mechanism? On which distribution and IPA version? On 11/05/2012 10:35 PM, Michael Mercier wrote: Hello, A couple of questions regarding DNS / Allow PTR sync. 1. If you

[Freeipa-users] Fwd: DNS / Allow PTR sync

2012-11-06 Thread Michael Mercier
Hello, I missed the reply all button. See my response to Dmitri inline below. Thanks, Mike Begin forwarded message: From: Michael Mercier mmerc...@gmail.com Date: November 5, 2012 8:10:53 PM GMT-05:00 To: d...@redhat.com Subject: Re: [Freeipa-users] DNS / Allow PTR sync Hello, On

Re: [Freeipa-users] Can't contact LDAP server: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user

2012-11-06 Thread Rob Crittenden
Tim Hughes wrote: I am trying to migrate from a fedora-ds-1.1.2-1.fc6 server to ipa-server-2.2.0-16.el6.x86_64 with the following command ipa migrate-ds ldaps://fedora-ds-server.internal --continue --with-compat --base-dn=dc=custsvc,dc=mycompany

Re: [Freeipa-users] Process open FD table is full.

2012-11-06 Thread Johan Sunnerstig
Thanks, I can't view the bug either but I'll pass it on in my support case. Erinn, in case it helps my support case # is 00646841. Oh and sorry for the mail formatting, Outlook at work... Regards Johan -Original Message- From: freeipa-users-boun...@redhat.com

Re: [Freeipa-users] Can't contact LDAP server: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user

2012-11-06 Thread Dmitri Pal
On 11/06/2012 08:07 AM, Rob Crittenden wrote: Tim Hughes wrote: I am trying to migrate from a fedora-ds-1.1.2-1.fc6 server to ipa-server-2.2.0-16.el6.x86_64 with the following command ipa migrate-ds ldaps://fedora-ds-server.internal --continue --with-compat

Re: [Freeipa-users] Can't contact LDAP server: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user

2012-11-06 Thread Rob Crittenden
Dmitri Pal wrote: On 11/06/2012 08:07 AM, Rob Crittenden wrote: Tim Hughes wrote: I am trying to migrate from a fedora-ds-1.1.2-1.fc6 server to ipa-server-2.2.0-16.el6.x86_64 with the following command ipa migrate-ds ldaps://fedora-ds-server.internal --continue --with-compat

Re: [Freeipa-users] Can't contact LDAP server: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user

2012-11-06 Thread Dmitri Pal
On 11/06/2012 11:58 AM, Rob Crittenden wrote: Dmitri Pal wrote: On 11/06/2012 08:07 AM, Rob Crittenden wrote: Tim Hughes wrote: I am trying to migrate from a fedora-ds-1.1.2-1.fc6 server to ipa-server-2.2.0-16.el6.x86_64 with the following command ipa migrate-ds

[Freeipa-users] Rebuilding the failing original IPA master

2012-11-06 Thread Steven Jones
Hi, It seems I am faced with rebuilding my original IPA mastertrouble is I dont know the impact and problems with doing that. For instance, can I simply, 1) run a db2ldif to export the ldap contents, 2) un-install the IPA server, 3) reboot and re-install it, 4) run ldif2db 5) then