[Freeipa-users] Possible to extract password of ldap

Hi : Is it possible to read clear text of password of ipa users by admin ? I m facing the issue of half rollout as half vol.of users changed password already. And if i deploy and reset all password then it may make issue for this half and we dont have records which user password sent . --

Re: [Freeipa-users] Users not inheriting groups

On Thu, Jul 31, 2014 at 03:42:43PM -0700, William Graboyes wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi List, I am running into some odd issues with IPA and users not inheriting all groups they are a member of. I spent a lot of time nesting groups so that when we add a

Re: [Freeipa-users] memberof plugin?

On 08/01/2014 12:40 AM, Kat wrote: Hi, I must be missing something obvious in getting memberof plugin to work.. Any ideas? Thanks in advance... ~K -- ./fixup-memberof.pl -D 'cn=Directory Manager' -b 'dc=red,dc=lemon,dc=com' -w - -v

Re: [Freeipa-users] Possible to extract password of ldap

On 08/01/2014 08:23 AM, barry...@gmail.com wrote: Hi : Is it possible to read clear text of password of ipa users by admin ? No. Admin can't even read the hash # ldapsearch -Y GSSAPI -b uid=fbar,cn=users,cn=accounts,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com uid userPassword SASL/GSSAPI

[Freeipa-users] Del private group fail even using command

Hi: I follow command found from here and want to del priate group but fail any idea? It said line 5 attribute error , any synta xwrong? ldapsearch -LLL -Y GSSAPI cn=barry ldapmodify -Y GSSAPI EOF dn: cn=barry,cn=groups,cn=accounts,dc=abc,dc=com changetype: modify delete: objectclass

Re: [Freeipa-users] Del private group fail even using command

On Aug 1, 2014, at 5:42 , barry...@gmail.com barry...@gmail.com wrote: Hi: I follow command found from here and want to del priate group but fail any idea? It said line 5 attribute error , any synta xwrong? ldapsearch -LLL -Y GSSAPI cn=barry ldapmodify -Y GSSAPI EOF dn:

Re: [Freeipa-users] Del private group fail even using command

On 08/01/2014 11:42 AM, barry...@gmail.com wrote: Hi: I follow command found from here and want to del priate group but fail any idea? It said line 5 attribute error , any synta xwrong? ldapsearch -LLL -Y GSSAPI cn=barry ldapmodify -Y GSSAPI EOF dn:

Re: [Freeipa-users] Del private group fail even using command

On 08/01/2014 11:56 AM, Tomas Babej wrote: On 08/01/2014 11:42 AM, barry...@gmail.com wrote: Hi: I follow command found from here and want to del priate group but fail any idea? It said line 5 attribute error , any synta xwrong? ldapsearch -LLL -Y GSSAPI cn=barry ldapmodify -Y GSSAPI

Re: [Freeipa-users] Users not inheriting groups

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Thanks for your help, The group memberships are propagated properly on the server side: dn: uid=user,cn=users,cn=accounts,dc=cenic,dc=org uid: user givenname: userfn sn: userln cn: userfn userln displayname: userfn userln initials: