Roderick Johnstone wrote:
On 10/02/15 07:44, Dmitri Pal wrote:
On 02/09/2015 05:35 PM, Roderick Johnstone wrote:
Hi
I seem to have locked myself out of my ipa admin account (on RHEL
6.6). This is an evaluation instance so not too big a deal, but a good
learning experience. I suspect its
Hi,
I am trying to integrate AD with FreeIPA. I was following the below document.
https://www.freeipa.org/images/2/2b/Installation_and_Deployment_Guide.pdf
While configuring am facing the below error.
[root@appserver2 ~]# ipa-replica-manage connect --winsync --binddn
On 02/10/2015 10:59 AM, Prady Dash wrote:
Hi,
I am trying to integrate AD with FreeIPA. I was following the below
document.
https://www.freeipa.org/images/2/2b/Installation_and_Deployment_Guide.pdf
While configuring am facing the below error.
/[root@appserver2 ~]# ipa-replica-manage
I have a freeipa installation of v4 on Fedora 21.
I have a separate fileserver with freeipa packages installed from
mkosek-freeipa-epel-7.repo on centos 7.
I have:
* created sambaSAMAccount,sambaGroupMapping UserObjects
* created an entry for DNA plugin to populate them
Hi,
I am using the below version :
ipa-server-3.0.0-42.el6.x86_64
What I want is to integrate AD with FreeIPA so in case of AD failure FreeIPA
should able to handle the requests( might be temporary such as cache or
something like that ).
Regards,
/Prady
From:
On 02/10/2015 11:21 AM, Prady Dash wrote:
Hi,
I am using the below version :
ipa-server-3.0.0-42.el6.x86_64
What I want is to integrate AD with FreeIPA so in case of AD failure
FreeIPA should able to handle the requests( might be temporary such
as cache or something like that ).
This
Hi,
Use Case :
We have a user group for VPN, So in a case of DR no one else would able to use
VPN as AD is the SPOF, So what am trying to achieve if FreeIPA can help to
hold the user data for this group might be temporary so that users could use
VPN during AD failure.
Is this possible ?
Prady Dash wrote:
Hi,
I am trying to integrate AD with FreeIPA. I was following the below
document.
https://www.freeipa.org/images/2/2b/Installation_and_Deployment_Guide.pdf
While configuring am facing the below error.
/[root@appserver2 ~]# ipa-replica-manage
On 02/10/2015 12:14 PM, Prady Dash wrote:
Hi,
Use Case :
We have a user group for VPN, So in a case of DR no one else would
able to use VPN as AD is the SPOF, So what am trying to achieve if
FreeIPA can help to hold the user data for this group might be
temporary so that users could use
On 02/10/2015 12:35 PM, marcin kowalski wrote:
Hi all, i'm getting dogtag figured out slowly, and i noticed one odd
thing.
I've setup certmonger to request an arbitrary certificate through
dogtag, and while the request seems to go into the dogtag system,
certmonger acts as if communication
On 10/02/2015 14:36, Rob Crittenden wrote:
Roderick Johnstone wrote:
On 10/02/15 07:44, Dmitri Pal wrote:
On 02/09/2015 05:35 PM, Roderick Johnstone wrote:
Hi
I seem to have locked myself out of my ipa admin account (on RHEL
6.6). This is an evaluation instance so not too big a deal, but a
Hi all, i'm getting dogtag figured out slowly, and i noticed one odd thing.
I've setup certmonger to request an arbitrary certificate through dogtag,
and while the request seems to go into the dogtag system, certmonger acts
as if communication with the CA failed. The certificate is considered in
Hi All,
Is there any way I can re-name the sudo rule name or copy the existing
sudo rule to a new one.
Regards
Sanju Abraham
=-=-=
Notice: The information contained in this e-mail
message and/or attachments to it may contain
confidential or privileged information. If
On 02/10/2015 09:22 AM, Sanju A wrote:
Hi All,
Is there any way I can re-name the sudo rule name or copy the existing
sudo rule to a new one.
Hello,
sorry, there is no support for that in FreeIPA API atm.
But you can rename the rule directly using ldap modify.
e.g.:
dn:
- Mail original -
De: Martin Basti mba...@redhat.com
À: Nicolas Zin nicolas@savoirfairelinux.com, freeipa-users@redhat.com
Envoyé: Mardi 10 Février 2015 14:02:30
Objet: Re: [Freeipa-users] bug with ipa-replica and external dns?
On 10/02/15 10:42, Nicolas Zin wrote:
Hi.
I tried to
Hi.
I tried to install IDM 3.3 (RHEL7) without integrated DNS.
It works fine until I begin to create a replica:
root@srv-idm7-01 # ipa-replica-prepare srv-idm7-02.hq.company.com --ip-address
192.168.128.22 --no-reverse
Directory Manager (existing master) password:
You can't add a DNS record
On 10/02/15 10:42, Nicolas Zin wrote:
Hi.
I tried to install IDM 3.3 (RHEL7) without integrated DNS.
It works fine until I begin to create a replica:
root@srv-idm7-01 # ipa-replica-prepare srv-idm7-02.hq.company.com --ip-address
192.168.128.22 --no-reverse
Directory Manager (existing master)
On 10/02/15 07:44, Dmitri Pal wrote:
On 02/09/2015 05:35 PM, Roderick Johnstone wrote:
Hi
I seem to have locked myself out of my ipa admin account (on RHEL
6.6). This is an evaluation instance so not too big a deal, but a good
learning experience. I suspect its some changes that I made to the
On 10.2.2015 12:29, Martin Basti wrote:
option --ip-address adds the specified address (addresses IPA-4-1) into IPA
DNS.
IPA currently does not support updating external DNS servers, so that is
reason why replica preparation did not work for you.
Let me add that newer versions of FreeIPA
great!
works if I don't add --ip-address
thanks!
- Mail original -
De: Nicolas Zin nicolas@savoirfairelinux.com
À: Martin Basti mba...@redhat.com
Cc: freeipa-users@redhat.com
Envoyé: Mardi 10 Février 2015 14:14:13
Objet: Re: [Freeipa-users] bug with ipa-replica and external dns?
On 10/02/15 12:22, Nicolas Zin wrote:
great!
works if I don't add --ip-address
thanks!
option --ip-address adds the specified address (addresses IPA-4-1) into
IPA DNS.
IPA currently does not support updating external DNS servers, so that is
reason why replica preparation did not work for
On 10.2.2015 01:23, Michael Lasevich wrote:
To save a day of torture to those of you still on FC20 and using
mkosek-freeipa copr repo - it appears that the package (
On 02/10/2015 12:00 PM, Roderick Johnstone wrote:
On 10/02/15 07:44, Dmitri Pal wrote:
On 02/09/2015 05:35 PM, Roderick Johnstone wrote:
Hi
I seem to have locked myself out of my ipa admin account (on RHEL
6.6). This is an evaluation instance so not too big a deal, but a good
learning
On 02/09/2015 11:36 AM, Martin Kosek wrote:
On 02/09/2015 05:16 PM, Chris Mohler wrote:
On 02/09/2015 10:18 AM, Martin Kosek wrote:
On 02/07/2015 12:27 AM, Chris Mohler wrote:
I'm having some troubles. I have an older IPA install Version 3.0.0. on Centos
6.6. It's currently the only master
Hi,
I recently deployed FreeIPA but I stumbled upon a problem with migrating my
groups. The groups in our old system are mixed case. Such as MyGroup. The
application that syncs these groups is case sensitive. The problem is that
when i create these groups using the webgui or the ipa admin tool
David Dejaeghere wrote:
Hi,
I recently deployed FreeIPA but I stumbled upon a problem with migrating
my groups. The groups in our old system are mixed case. Such as MyGroup.
The application that syncs these groups is case sensitive. The problem
is that when i create these groups using the
On 02/10/2015 08:39 PM, Israel Miranda wrote:
I have a freeipa installation of v4 on Fedora 21.
I have a separate fileserver with freeipa packages installed from
mkosek-freeipa-epel-7.repo on centos 7.
I have:
* created sambaSAMAccount,sambaGroupMapping UserObjects
* created an entry for DNA
Well, that's a surprise! Since the ipv6 module is running, I had assumed that
IPv6 is enabled:
# lsmod | grep ipv6
ipv6 334932 0
I'll look into getting IPv6 enabled. (This is a RHEL6 server, which uses SysV
init instead of systemd.)
Thanks for your help.
David Guertin
For the record, here's the solution I came up with for RHEL6 (and presumably
other SysV init-based systems):
Its Linux kernel is 2.6, which does have IPv6 enabled. The ipv6 module is
loaded. I had looked at those and assumed that everything was OK, but these two
are not enough. I needed to
29 matches
Mail list logo