Thanks everyone... Between what you guys said and some research i ended up
doing this
http://serverfault.com/questions/594443/how-can-i-force-a-mac-mobile-account-user-to-be-logged-out-or-locked-out-when-th/594773#594773
On Mon, May 12, 2014 at 4:31 PM, Michael ORourke
Is there anyway to do a nsupdate of a DNS records in a IPA server using a
TSIG key without having a kerberos ticket?
We were going to swap out bind in favor of IPA, but we need to be able to
nsupdates.
On Mon, May 12, 2014 at 10:11 AM, Bob harv...@gmail.com wrote:
We use nsupdate to to move
On 05/13/2014 09:59 AM, Bob wrote:
Is there anyway to do a nsupdate of a DNS records in a IPA server
using a TSIG key without having a kerberos ticket?
We were going to swap out bind in favor of IPA, but we need to be able
to nsupdates.
If you are using IPA you can give you clients
I have many dozens of TSIG keys declared in our current bind. There are
hundreds of records that have been granted to those keys. All of this
predates me and I do not know who has these keys. The scope of trying to
work with the owners of these keys to convert their processes to to use
kerberos
I ran
ipa dnszone-mod vh1.vzwnet.com --update-policy=grant bob-key name
test.vh1.vzwnet.com.;
I then execute the nsupdate:
[root@nj51rhidms16v ~]# ./bobtest.sh
; TSIG error with server: tsig indicates error
update failed: NOTAUTH(BADKEY)
[root@nj51rhidms16v ~]# cat ./bobtest.sh
#!/bin/ksh
#
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
This doc:
http://docs.fedoraproject.org/en-US/Fedora/18/html/FreeIPA_Guide/server-config.html
discusses turning on global debugging but doesn't help me. The same doc
links
- Original Message -
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
Why do you need to change the verbosity of access logging? Do you mean error
logging? If so, see http://port389.org/wiki/FAQ#Troubleshooting
On 05/13/2014 02:12 PM, Bob wrote:
I ran
ipa dnszone-mod vh1.vzwnet.com http://vh1.vzwnet.com
--update-policy=grant bob-key name test.vh1.vzwnet.com.;
I then execute the nsupdate:
[root@nj51rhidms16v ~]# ./bobtest.sh
; TSIG error with server: tsig indicates error
update failed:
Jason Becker wrote:
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
This doc:
http://docs.fedoraproject.org/en-US/Fedora/18/html/FreeIPA_Guide/server-config.html
discusses turning on global debugging but doesn't help me.
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
Why do you need to
On Tue, May 13, 2014 at 2:26 PM, Richard Megginson rmegg...@redhat.comwrote:
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
- Original Message -
On Tue, May 13, 2014 at 2:26 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
I am using FreeIPA 3.0.0 on
On Tue, May 13, 2014 at 3:35 PM, Richard Megginson rmegg...@redhat.comwrote:
- Original Message -
On Tue, May 13, 2014 at 2:26 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
13 matches
Mail list logo