Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert stop-tracking -i 20131106075356
and has generated new request
# ipa-getcert request -f /var/lib/certmonger/requests/server.crt
-k
On 11/05/2013 02:05 PM, EP wrote:
Thanks for your answers so far.
A question about cross realm trusts though: This requires the AD servers to
be available when doing a login via FreeIPA, right? Or is FreeIPA caching
information from AD?
We don't want Linux logins to be dependent on a
On 11/05/2013 02:51 PM, KodaK wrote:
If I use the whole connection string:
uid=jebalicki,cn=users,cn=accounts,dc=unix,dc=magellanhealth,dc=com
I can authenticate.
Does this count as SOLVED?
If so can you please reply with the SOLVED in the subject?
On Tue, Nov 5, 2013 at 1:40 PM, KodaK
Hello,
We are trying to make access to the FreeIPA wiki easier and allow
contributions without addition overhead. In the past to make any change
to wiki one had to have a special wiki account. The procedure of
creating such account was cumbersome. We added support for OpenID. Among
available
On Wed, 06 Nov 2013, Arthur Faizullin wrote:
Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert stop-tracking -i 20131106075356
and has generated new request
# ipa-getcert request -f
On 11/06/2013 07:01 AM, Arthur Faizullin wrote:
Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert stop-tracking -i 20131106075356
and has generated new request
# ipa-getcert
On 11/05/2013 10:16 PM, Rob Crittenden wrote:
If you have deployed original IPA server with integrated CA, then your
other replicas better to have at least one with CA configured to allow
proper recovery in case primary one is destroyed.
Is there any caveats to not deploy CA on all replicas
On 11/06/2013 02:08 AM, Rich Megginson wrote:
On 11/05/2013 04:23 PM, Tamas Papp wrote:
On 11/05/2013 09:25 PM, Rich Megginson wrote:
On 11/05/2013 01:03 PM, Tamas Papp wrote:
On 11/05/2013 03:58 PM, Rich Megginson wrote:
On 11/05/2013 07:53 AM, Tamas Papp wrote:
On 11/05/2013 03:17 PM,
On 11/06/2013 02:07 AM, Rich Megginson wrote:
On 11/05/2013 04:34 PM, Tamas Papp wrote:
On 11/05/2013 03:58 PM, Rich Megginson wrote:
On 11/05/2013 07:53 AM, Tamas Papp wrote:
On 11/05/2013 03:17 PM, Rich Megginson wrote:
https://fedorahosted.org/389/ticket/47516
This has been fixed
Armstrong, Kenneth Lawrence klarmstrong2@... writes:
hi..
has the problem fixed???
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On 11/06/2013 04:16 AM, Rob Crittenden wrote:
5. If I have a network like this:
A1__B1
A2 B2
A2 and B1,2 are replicated from A1
If the connection gets lost between A and B site, are B1 and 2 (and
A1,2) replicated fine?
I assume from the above that B1 does not know about
On 11/06/2013 06:32 AM, William Leese wrote:
Hi,
Trying to install freeIPA and have it a sub-ca of an existing one. Sadly
I'm not getting anywhere.
The version I have installed:
ipa-server-3.0.0-26.el6_4.4.x86_64
This is what I run:
ipa-server-install -U -a testtest -p testtest
Dmitri Pal wrote:
On 11/06/2013 07:01 AM, Arthur Faizullin wrote:
Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert stop-tracking -i 20131106075356
and has generated new request
#
On 11/06/2013 06:41 AM, Tamas Papp wrote:
On 11/06/2013 04:16 AM, Rob Crittenden wrote:
5. If I have a network like this:
A1__B1
A2 B2
A2 and B1,2 are replicated from A1
If the connection gets lost between A and B site, are B1 and 2 (and
A1,2) replicated fine?
I assume
Have you guys/gals considered using Sphinx http://sphinx-doc.org/,
instead (perhaps, in conjunction with ReadTheDocs.orghttps://readthedocs.org/
)?
The documentation source can then be hosted on GitHub. For live examples,
check out:
- Salt Cloud's
On Wed, 06 Nov 2013, Pablo Carranza wrote:
Have you guys/gals considered using Sphinx http://sphinx-doc.org/,
instead (perhaps, in conjunction with ReadTheDocs.orghttps://readthedocs.org/
)?
I'm not sure how it helps -- we need a wiki working on FreeIPA org, it
is part of our development
I'm attempting to migrate our OpenLDAP+Kerberos authentication scheme to
FreeIPA. Running the following migration command:
ipa migrate-ds --bind-dn=cn=admin,dc=foo,dc=com --base-dn=dc=foo,dc=com
--user-container=ou=users --group-container=ou=group
--user-objectclass=posixAccount
On 11/06/2013 03:33 PM, Alexander Bokovoy wrote:
On Wed, 06 Nov 2013, Pablo Carranza wrote:
Have you guys/gals considered using Sphinx http://sphinx-doc.org/,
instead (perhaps, in conjunction with
ReadTheDocs.orghttps://readthedocs.org/
)?
Yes, we considered it.
Sphinx and ReadTheDocs are
Hi,
We have our own in house CA.
I ran ipa-server-install -a secret12 -r EXAMPLE.COM -P password -p secret12 -n
ipaserver.example.com --external-ca
It generated ipa.csr as expected..
I used opsenssl to sign it on our internal CA. I got the .crt file..
I assume I need the private KEY that the
On 11/06/2013 12:15 AM, indira wrote:
Armstrong, Kenneth Lawrence klarmstrong2@... writes:
hi..
has the problem fixed???
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
Was a
Ryan M. Casey wrote:
I’m attempting to migrate our OpenLDAP+Kerberos authentication scheme to
FreeIPA. Running the following migration command:
ipa migrate-ds --bind-dn=cn=admin,dc=foo,dc=com
--base-dn=dc=foo,dc=com --user-container=ou=users
--group-container=ou=group
After building a new VM and configuring the IPA 3.3.2 client, Gnome
seems to only perform a local log-in until the system is rebooted. SSH
works with IPA, but not Gnome. Is this correct? Is there anything less
disruptive than a reboot that I can do?
___
В Ср, 06/11/2013 в 14:52 +0200, Alexander Bokovoy пишет:
On Wed, 06 Nov 2013, Arthur Faizullin wrote:
Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert stop-tracking -i
В Ср, 06/11/2013 в 08:44 -0500, Rob Crittenden пишет:
Dmitri Pal wrote:
On 11/06/2013 07:01 AM, Arthur Faizullin wrote:
Исаев Виталий Анатольевич is...@fintech.ru has give me advise that the
problem may be in Selinux.
so I has stoped tracking previous request by
$ sudo ipa-getcert
I have done as You said!
# ipa-getcert request -f /etc/pki/tls/certs/postgresql.crt
-k /etc/pki/tls/private/postgresql.key -K
postgresql/postgresql.example.com -N CN=postgresql.example.com -D
postgresql.example.com
# ipa-getcert list
Request ID '20131107050729':
status: MONITORING
I have not rebooted whale machine. everything worked fine.
May be just try to restart gdm?
# systemctl restart gdm.service
В Ср, 06/11/2013 в 22:13 -0600, Dean Hunter пишет:
After building a new VM and configuring the IPA 3.3.2 client, Gnome
seems to only perform a local log-in until the system
On Wed, 06 Nov 2013, Dean Hunter wrote:
After building a new VM and configuring the IPA 3.3.2 client, Gnome
seems to only perform a local log-in until the system is rebooted. SSH
works with IPA, but not Gnome. Is this correct? Is there anything less
disruptive than a reboot that I can do?
27 matches
Mail list logo