Re: [Freeipa-users] is an IPA Server, but it might be unknown, foreign or previously deleted one

pgb205 wrote: so initially the setup was with ipa-server-03 having replication to ipa-server-02 i have then decomissioned ipa-server-03 and setup a new one with the same name. right now replication is between ipa-server-03 and ipa-server-01 but i would want to add another replication agreement 02

Re: [Freeipa-users] is an IPA Server, but it might be unknown, foreign or previously deleted one

so initially the setup waswith ipa-server-03 having replication to ipa-server-02i have then decomissioned ipa-server-03 and setup a new one with the same name.right now replication is between ipa-server-03 and ipa-server-01 but i would want to add anotherreplication agreement 02 and 03 same as b

[Freeipa-users] KDC returned error string: NOT_ALLOWED_TO_DELEGATE

We have FreeIPA 3.0.0 running on CentOS 6.4 and master-ipa01 (configured with --setup-ca option) and replica- ipa02 (configured without --setup-ca) option. We use a script ipa clients to the server, when we tried to add new ipa clients, we are getting error, *ipa: ERROR: Insufficient access: SASL

Re: [Freeipa-users] Querying the dir srv

On 08/04/2016 06:43 PM, Sean Hogan wrote: > Thanks Ben.. appreciated.. will give it a go. Do you guys recommend any > specific > ldap viewer to view the internals? I was looking at apache dir studio I think > it > was... but needs java and I don't want to add java > to a server that does not ha

Re: [Freeipa-users] is an IPA Server, but it might be unknown, foreign or previously deleted one

Martin Basti wrote: On 05.08.2016 05:24, pgb205 wrote: my previous setup was srv2->replica srv1->srv2 I have removed replica and set it up with the one with identical hostname. Now I have replication from srv1->replica and am trying to create another agreement from srv2=>replica but i am get

Re: [Freeipa-users] IPA and FIPS 140-2

Are you now asking about when upstream version is FIPS compliant or some downstream distribution? If you are asking about RHEL, as indicated by https://bugzilla.redhat.com/show_bug.cgi?id=1125174 the bug is still in a NEW state. Given the state of RHEL-7.3 life cycle, it is too late to add it there

Re: [Freeipa-users] Querying the dir srv

On 04.08.2016 18:43, Sean Hogan wrote: Thanks Ben.. appreciated.. will give it a go. Do you guys recommend any specific ldap viewer to view the internals? I was looking at apache dir studio I think it was... but needs java and I don't want to add java to a server that does not have it incre

Re: [Freeipa-users] is an IPA Server, but it might be unknown, foreign or previously deleted one

On 05.08.2016 05:24, pgb205 wrote: my previous setup was srv2->replica srv1->srv2 I have removed replica and set it up with the one with identical hostname. Now I have replication from srv1->replica and am trying to create another agreement from srv2=>replica but i am getting the error messag