Re: [Freeipa-users] Closing off some ports for FreeIPA

On Fri, 01 Apr 2016, Jeremy Utley wrote: Hello all on the list. First off, if this is documented somewhere I'm not aware of, I apologize for the noise. I've spent a couple of hours google searching google without success, so pointers to any documentation I've missed would be greatly

Re: [Freeipa-users] Closing off some ports for FreeIPA

On Fri, Apr 1, 2016 at 2:57 PM, Rob Crittenden wrote: > Jeremy Utley wrote: > >> Hello all on the list. >> >> First off, if this is documented somewhere I'm not aware of, I apologize >> for the noise. I've spent a couple of hours google searching google >> without success,

Re: [Freeipa-users] Closing off some ports for FreeIPA

Jeremy Utley wrote: Hello all on the list. First off, if this is documented somewhere I'm not aware of, I apologize for the noise. I've spent a couple of hours google searching google without success, so pointers to any documentation I've missed would be greatly appreciated! We're in the

[Freeipa-users] Closing off some ports for FreeIPA

Hello all on the list. First off, if this is documented somewhere I'm not aware of, I apologize for the noise. I've spent a couple of hours google searching google without success, so pointers to any documentation I've missed would be greatly appreciated! We're in the process of setting up a

[Freeipa-users] start and stop of ipa commands in systemd

Hallo I have a question regarding enabling/disabling separate ipa parts in systemd. Is it necessarry or required to have httpd, directory server, named memcache and all the other ipa services to be enabled in systemd? Or is it recomended to have only the main ipa service enabled (and all the

Re: [Freeipa-users] using sudo in ipa

Jeffrey,You will want to use the Sudo Option "!authenticate".-Mike-Original Message- From: "Armstrong, Jeffrey" Sent: Apr 1, 2016 1:14 PM To: "freeipa-users@redhat.com" Subject: [Freeipa-users] using sudo in ipa

[Freeipa-users] using sudo in ipa

Hi I would like to know how to configure sudo in the IdM environment. I need to know how to configure sudo access without asking for a password. Jeffrey Armstrong -Senior ECS Engineer ECMS - Application Support Team Office Phone - 770-270-7421 Cell Phone - 404-323-7386 [For Email_GSOC

Re: [Freeipa-users] Install/promote new CA old one corrupted before backups

Sadly - I don't think that CA is installed on other replica's They were installed following the replica-prepare and replica-install process with nothing else done outside of this process to install CA. I did not have backups yet when the incident occurred so I only have the replica's created

Re: [Freeipa-users] FreeIPA Deployment Proposal (request for recommendations)

Hello, most importantly: - FreeIPA does not support real multi-tenancy - FreeIPA is not a general purpose DNS server and does not (and will not) support DNS views If real multi-tenancy is required or not depends on your use-case and possibilities your users have. Do users join their custom

Re: [Freeipa-users] Install/promote new CA old one corrupted before backups

On 31.03.2016 16:09, McNiel, Craig wrote: I was installing a 7 host IPA with ipa01 being the CA and the others being replicas of this node. This was to be the production installation of IPA and the admins/users started using it prior to the installation being completed and before I had