Hi all:
Some doc said it already build in TLS on 389 ... is it nsslapd-minssf on
the dse.ldif?
Should i need to set 636 ldaps ? or set higher nsslapd-minssf enough?
What document tell the default secure connection of free ipa?
thks
barry
___
Freeipa-
Following ports are opened between the
1) Between the master and the replica (bi directional)
2) client machine and the ipa replica (unidirectional).
When the replica was up it worked fine as far as syncing was concerned.
80 tcp
443 tcp
389 tcp
636 tcp
88 tcp
464 tcp
88 udp
464 udp
123
Hey Guys,
So I have my master and replica up in my datacenter.
I have a client, I have a winsync agreement, I have a password sync.
It's working lovely.
So Now I have spun up an AWS instance of redh hat 6.5 (same as my master and
first replica)
I run the ipa replica and it fails
ipa-replic
Before I go installing Samba for File Sharing. I wanted to make sure I was
installing the correct version of Samba without conflicting with the Linux
server being an IPA client.
Currently installed sambaX packages:
samba-client.x86_64 3.6.9-167.el6_5
@updates
samba-common
Josh wrote:
On Feb 11, 2014, at 2:44 PM, Rob Crittenden mailto:rcrit...@redhat.com>> wrote:
Josh wrote:
I have a situation where I need to support more than 1024 categories
on a system. I modified the selinuxusermap.py file to check for the
number of categories I need but ipa still responds
m...@tdiehl.org wrote:
Hi,
I am in the process of evaluating ipa on Centos 6.5. So far I really
like what
I see but the one problem I cannot find a viable solution for is how can
I do
internal and external views with dns stored in ipa? Google seems to
indicate
that it is not possible but I thoug
Josh wrote:
I have a situation where I need to support more than 1024 categories on a
system. I modified the selinuxusermap.py file to check for the number of
categories I need but ipa still responds with the original error message. Do I
need to restart any of the services?
Here is the comm
I have a situation where I need to support more than 1024 categories on a
system. I modified the selinuxusermap.py file to check for the number of
categories I need but ipa still responds with the original error message. Do I
need to restart any of the services?
Here is the command that was r
Hi,
I am in the process of evaluating ipa on Centos 6.5. So far I really like what
I see but the one problem I cannot find a viable solution for is how can I do
internal and external views with dns stored in ipa? Google seems to indicate
that it is not possible but I thought I would ask here to b
I work in environment where the AD is the DC of the windows machines ,
while the linux machines (RHEL 5\6) are not centrally managed.
I would like to create an IPA server to manage the linux machines while
creating a trust with AD.
The current situation is all windows and linux machines are under
.
We are transitioning from one IPA instance to a new IPA instance. The
version of IPA instances is the same, and all is functioning normally on
the existing IPA, but when I attempt to transition a host to the new IPA
instance, I get the following in my logs when I attempt an SSH ..
[sssd[be[dev.ca1
Lukas
I read the information on those two links, my problem is different. My replica
is working fine, the database has all the records. My problem is I am not able
to use the replica for ipa-client -install. In one of my replies I sent
information that kinit was trying to access my master instea
The last line in the log should be:
2014-02-06T16:27:48Z DEBUG Caught fault 1101 from server
https://mgmt-001.domain/ipa/xml: did not receive Kerberos credentials
The python modules import happened after I tried to re-install again.
Sorry for the confusion.
ipa-client-3.0.0-37.el6.x86_64
On T
Martin Kosek wrote:
On 02/10/2014 12:01 PM, barry...@gmail.com wrote:
Dear all:
Which command can export /show all users a/c and info? better in table
format .
Regards
Barry
$ ipa user-find
Or in JSON-RPC command:
{"method":"user_find","params":[[""],{"sizelimit":0}]}
Be aware that the
barry...@gmail.com wrote:
Dear all:
Any one have exp to upgrade ipa-server-3.0.0-26.el6_4.4.x86_64 to
ipa-server-3.0.0-37.el6_4.4.x86_64 ( jus t minor patch/upgrade it think )
Is it just yum install then ok ??? i notice some official document but
they are 3.3 free ipa of fedora ...just yum / run
On 11.2.2014 12:46, Mauricio Tavares wrote:
On Feb 11, 2014 4:12 AM, "Martin Kosek" wrote:
On 02/10/2014 10:08 PM, Mauricio Tavares wrote:
On Mon, Feb 10, 2014 at 3:40 PM, Dmitri Pal wrote:
On 02/09/2014 09:52 PM, Mauricio Tavares wrote:
On Sun, Feb 9, 2014 at 9:07 PM, Steve Dainard
wrote
On Feb 11, 2014 4:12 AM, "Martin Kosek" wrote:
>
> On 02/10/2014 10:08 PM, Mauricio Tavares wrote:
> > On Mon, Feb 10, 2014 at 3:40 PM, Dmitri Pal wrote:
> >> On 02/09/2014 09:52 PM, Mauricio Tavares wrote:
> >>>
> >>> On Sun, Feb 9, 2014 at 9:07 PM, Steve Dainard
> >>> wrote:
>
> I've
On Tue, Feb 11, 2014 at 10:05:37AM +0100, Christian Schmitt wrote:
> Hello, currently I have installed a IPA Server (CentOS 6.5) and have a Fedora
> 20 Heisenburg Client with ipa installed.
>
> Currently I have some strange problems with every user account from free IPA.
> They can't change the
On 02/10/2014 10:08 PM, Mauricio Tavares wrote:
> On Mon, Feb 10, 2014 at 3:40 PM, Dmitri Pal wrote:
>> On 02/09/2014 09:52 PM, Mauricio Tavares wrote:
>>>
>>> On Sun, Feb 9, 2014 at 9:07 PM, Steve Dainard
>>> wrote:
I've noticed if ntpd is already running on the client when you run the
Hello, currently I have installed a IPA Server (CentOS 6.5) and have a Fedora
20 Heisenburg Client with ipa installed.
Currently I have some strange problems with every user account from free IPA.
They can't change the NetworkManager settings on the KDE Gui, like open a WLAN
connection or conne
On 02/11/2014 07:02 AM, Steve Severance wrote:
> I want to create an AWS AMI that when it starts up will register itself
> with a Free-IPA instance. The issue I have run into so far is every
> instance when it starts up uses the original instances hostname. What do I
> need to do to have free-ipa w
21 matches
Mail list logo