be able to authenticate to
C.B.EXAMPLE.COM, but not the other way around (This is how I would
like it setup).
However, this does not appear to work. I assume that I need to add
some entries to the LDAP server as well? Does anyone know if this is
true and if so, how I should go about it?
Thanks,
Dan
Hi,
On Fri, Dec 18, 2009 at 13:40, Nalin Dahyabhai na...@redhat.com wrote:
On Fri, Dec 18, 2009 at 12:31:44PM -0500, Dan Scott wrote:
I have added these principals to both FreeIPA servers:
krbtgt/c.b.example@a.example.com
(I see the warning in the FreeIPA documentation about avoiding
://directory.fedoraproject.org/wiki/Subtree_Rename#warning:_upgrade_from_389_v1.2.6_.28a.3F.2C_rc1_.7E_rc6.29_to_v1.2.6_rc6_or_newer
Which could well apply in my case, but I wanted to check to ensure
that this would apply to FreeIPA.
Does anyone have any comments suggestions about this?
Thanks,
Dan Scott
fails to start at all.
Does anyone have any ideas for how to fix this?
Thanks,
Dan Scott
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
Hi,
We have 2 FreeIPA servers. The slave has already been upgraded from
Fedora 11 to 13 and I am preparing to upgrade the master from 11.
Does anyone have any hints/tips for this process? I'm planning to use
preupgrade (Which worked fine for the slave server). I'm just
concerned about what to do
Hi,
Recently I have been seeing a constant stream of entries in my dirsrv
logs for my Fedora 11 FreeIPA master:
Replica has a different generation ID than the local data.
I'm also seeing issues which appear to be related to incorrect
replication. e.g. User changes password and is then unable to
Hi,
Sorry, I just checked the manpage myself and I see that there's an
init option to ipa-replica-manage.
On Wed, Sep 22, 2010 at 12:08, Rich Megginson rmegg...@redhat.com wrote:
Initialization is the initial copy of data from the master - The slave
server (curie) has been configured and
Excellent, that seems to have solved it, thanks.
Dan
On Wed, Sep 22, 2010 at 13:32, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
Sorry, I just checked the manpage myself and I see that there's an
init option to ipa-replica-manage.
On Wed, Sep 22, 2010 at 12:08, Rich
the
replication, but I suspect this has something to do with the schema
definition.
Does anyone have any pointers/ideas for how I can fix this?
Thanks,
Dan Scott
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa
Hi,
On Wed, Oct 6, 2010 at 11:32, Simo Sorce sso...@redhat.com wrote:
On Wed, 6 Oct 2010 10:26:48 -0400
Dan Scott danieljamessc...@gmail.com wrote:
Hi,
I have master and slave FreeIPA servers. I recently upgraded the slave
by wiping, re-installing Fedora 13 and re-creating the replication
Hi,
ohm_admins.ldif and curie_admins.ldif attached. I added a '-h
$hostname' to the command to ensure that I queried both servers. The
results look identical to me, apart from the ordering.
Thanks,
Dan
On Wed, Oct 6, 2010 at 15:34, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote
wrote:
Dan Scott wrote:
Hi,
ohm_admins.ldif and curie_admins.ldif attached. I added a '-h
$hostname' to the command to ensure that I queried both servers. The
results look identical to me, apart from the ordering.
Thanks,
Dan
On Wed, Oct 6, 2010 at 15:34, Rob Crittenden rcrit
Hi,
On Wed, Oct 6, 2010 at 18:30, Rich Megginson rmegg...@redhat.com wrote:
Dan Scott wrote:
I'm not sure which group this is referring to. Admins only contains 3
users, no nested groups.
The problem appears to be related to the users, rather than the
groups. None of the users on ohm have
On Wed, Oct 6, 2010 at 22:02, Rich Megginson rmegg...@redhat.com wrote:
Dan Scott wrote:
Hi,
On Wed, Oct 6, 2010 at 18:30, Rich Megginson rmegg...@redhat.com wrote:
Dan Scott wrote:
I'm not sure which group this is referring to. Admins only contains 3
users, no nested groups
On Thu, Oct 7, 2010 at 11:32, James Roman james.ro...@ssaihq.com wrote:
On 10/07/2010 11:20 AM, Rich Megginson wrote:
20 is type or value exists - I think this means that it is attempting to
set a referral for the master, but there already is one.
Curie contains the same log entry.
But,
On Thu, Oct 7, 2010 at 11:47, Dan Scott danieljamessc...@gmail.com wrote:
On Thu, Oct 7, 2010 at 11:32, James Roman james.ro...@ssaihq.com wrote:
On 10/07/2010 11:20 AM, Rich Megginson wrote:
20 is type or value exists - I think this means that it is attempting to
set a referral
On Fri, Oct 8, 2010 at 11:39, James Roman james.ro...@ssaihq.com wrote:
So does anyone have any more suggestions? Or should I just configure a
new replica with new hostname and IP?
Thanks,
Dan
I've seen the initial problem where the memberof elements stop updating on
my own FreeIPA v1
On Fri, Oct 8, 2010 at 16:28, Nathan Kinder nkin...@redhat.com wrote:
On 10/08/2010 12:08 PM, Dan Scott wrote:
On Fri, Oct 8, 2010 at 14:52, James Romanjames.ro...@ssaihq.com wrote:
On 10/08/2010 01:49 PM, Dan Scott wrote:
On Fri, Oct 8, 2010 at 13:18, Rich Megginsonrmegg...@redhat.com
Hi,
On Fri, Dec 17, 2010 at 13:25, Simo Sorce sso...@redhat.com wrote:
I have recently upgraded one of our server from Fedora 13 to 14.
Recently, I noticed that I cannot reset user passwords any more:
A database error occurred: Operations error: Failed to update password
The log file
Hi,
I saw a similar problem with a recently installed VM. There was a problem with:
/etc/nss_ldap.conf
which didn't contain the correct configuration. I copied the config from:
/etc/ldap.conf
and the 'id' command started working correctly.
Hope this helps,
Dan
On Wed, Dec 22, 2010 at
Hi,
I have a FreeIPA server running on Fedora 14
[root@ohm ~]# rpm -qa|grep ipa-server
ipa-server-selinux-1.2.2-5.fc14.x86_64
ipa-server-1.2.2-5.fc14.x86_64
For the past few weeks, the dirsrv service has been 'crashing'. Randomly, as
far as I can tell. - the service appears to remain running,
Hi,
Thanks for the quick response
On Thu, Jan 27, 2011 at 10:19, Rich Megginson rmegg...@redhat.com wrote:
On 01/27/2011 07:47 AM, Dan Scott wrote:
Hi,
I have a FreeIPA server running on Fedora 14
[root@ohm ~]# rpm -qa|grep ipa-server
ipa-server-selinux-1.2.2-5.fc14.x86_64
ipa
Hi,
Thanks for all the replies.
On Wed, May 25, 2011 at 18:13, Rob Crittenden rcrit...@redhat.com wrote:
I have a FreeIPA 1.2.1 system (1 master and 1 replica server) running
on Fedora 14. I'd like to migrate to FreeIPA 2, now that Fedora 15 has
been released. But I have a few questions:
1.
On Tue, Jun 21, 2011 at 11:37, Stephen Gallagher sgall...@redhat.com wrote:
On Tue, 2011-06-21 at 11:31 -0400, Dan Scott wrote:
Hi,
On Tue, Jun 21, 2011 at 11:20, Stephen Gallagher sgall...@redhat.com wrote:
On Tue, 2011-06-21 at 11:06 -0400, Dan Scott wrote:
Hi,
I'm still running
On Tue, Jun 21, 2011 at 14:19, Stephen Gallagher sgall...@redhat.com wrote:
On Tue, 2011-06-21 at 11:58 -0400, Dan Scott wrote:
On Tue, Jun 21, 2011 at 11:37, Stephen Gallagher sgall...@redhat.com wrote:
On Tue, 2011-06-21 at 11:31 -0400, Dan Scott wrote:
Hi,
On Tue, Jun 21, 2011 at 11
conflicting with my existing FreeIPA 1.2.x servers elsewhere on the
network?
Thanks,
Dan Scott
2011-06-24 13:33:04,752 DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2011-06-24 13:33:04,753 DEBUG Loading Index file from '/var/lib/ipa/sysrestore/sysrestore.index'
2011-06-24 13
Hi,
On Fri, Jun 24, 2011 at 14:00, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
I've just installed Fedora 15 onto a VM, configured networking and run
the ipa-server-install script - the installation fails with the error:
Configuring ntpd
[1/4]: stopping ntpd
[2/4
Hi,
On Tue, May 31, 2011 at 13:41, Rob Crittenden rcrit...@redhat.com wrote:
Dmitri Pal wrote:
On 05/31/2011 10:45 AM, tomasz.napier...@allegro.pl wrote:
Hi,
I'm trying to migrate data form our current FreeIPA install (v1) and I'm
having problems with nonexistant objectClass in v2, which
Hi,
I have a FreeIPA 1 system which is being migrated to FreeIPA 2. After
migration, the script says:
Passwords have been migrated in pre-hashed format.
IPA is unable to generate Kerberos keys unless provided
with clear text passwords. All migrated users need to
login at
Hi,
On Wed, Sep 7, 2011 at 14:59, Dmitri Pal d...@redhat.com wrote:
On 09/07/2011 02:45 PM, Dan Scott wrote:
I have a FreeIPA 1 system which is being migrated to FreeIPA 2. After
migration, the script says:
Passwords have been migrated in pre-hashed format.
IPA is unable to generate
would recommend using Kerberos for authentication, i.e. parameter -Y
GSSAPI. That always worked for me...
On 09/14/2011 08:59 PM, Dan Scott wrote:
Hi,
I'm trying to perform an authenticated LDAP search against a FreeIPA
server (Fedora 15, freeipa-server-2.1.0-1.fc15.x86_64).
When I run
the new ID? I've created
a temporary ipausers-legacy group with ID 1002 to eliminate the error
temporarily.
I think that's it for now :)
Thanks,
Dan Scott
http://danieljamesscott.org/
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
Hi,
On Fri, Sep 23, 2011 at 13:57, Stephen Gallagher sgall...@redhat.com wrote:
On Fri, 2011-09-23 at 13:38 -0400, Dan Scott wrote:
Hi,
I've recently upgraded from FreeIPA 1.2 to 2.1. Most things are
working OK, but I have a few problems:
1. I'm unable to login to a new client machine via
Hi,
I am having some problems when SSHing into my Fedora 15 client which
is authenticated using FreeIPA
djscott@pc35:~$ ssh admin@pc35
admin@pc35's password:
id: cannot find name for user ID 181260
id: cannot find name for user ID 181260
[I have no name!@pc35 ~]$ logout
Connection to
Hi,
On Wed, Oct 19, 2011 at 16:43, Dmitri Pal d...@redhat.com wrote:
On 10/19/2011 04:05 PM, Dan Scott wrote:
Hi,
I am having some problems when SSHing into my Fedora 15 client which
is authenticated using FreeIPA
djscott@pc35:~$ ssh admin@pc35
admin@pc35's password:
id: cannot find
help me modify the above command so that I can find users,
using their email address, who are also members of a particular group?
Preferably using one command.
Thanks,
Dan Scott
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
On Fri, Nov 4, 2011 at 19:07, Rich Megginson rmegg...@redhat.com wrote:
On 11/04/2011 04:51 PM, Dan Scott wrote:
Hi,
On Fri, Nov 4, 2011 at 18:13, Rob Crittendenrcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
On Fri, Nov 4, 2011 at 17:38, Stephen Ingramsbing...@gmail.com
wrote
On Mon, Nov 7, 2011 at 08:20, Stephen Gallagher sgall...@redhat.com wrote:
On Fri, 2011-11-04 at 17:12 -0400, Dan Scott wrote:
Hi,
I've just migrated a couple of servers from FreeIPA 1.2 to 2.1. I'm
almost done. I just have a few custom LDAP searches to migrate.
With the old system, I
Hi,
On Tue, Nov 8, 2011 at 18:35, Simo Sorce s...@redhat.com wrote:
On Tue, 2011-11-08 at 17:57 -0500, Dmitri Pal wrote:
On 11/08/2011 02:56 PM, Dan Scott wrote:
Hi,
This is a great feature. It feels like I'm always re-installing VMs
and having to remove old SSH keys and re-accept new
Hi,
I've just upgraded a server from Fedora 15 to 16 and I'm having
problems starting the dirsrv process:
/var/log/messages
Nov 14 09:38:27 fileserver1 ipactl[1351]: Failed to read data from
Directory Service: Unknown error when retrieving list of services from
LDAP: [Errno 2] No such file or
Hi,
On Mon, Nov 14, 2011 at 10:19, Alexander Bokovoy aboko...@redhat.com wrote:
On Mon, 14 Nov 2011, Dan Scott wrote:
Hi,
I've just upgraded a server from Fedora 15 to 16 and I'm having
problems starting the dirsrv process:
/var/log/messages
Nov 14 09:38:27 fileserver1 ipactl[1351
Hi,
On Mon, Nov 14, 2011 at 13:06, Alexander Bokovoy aboko...@redhat.com wrote:
On Mon, 14 Nov 2011, Dan Scott wrote:
In any case, the process is still failing to start. Do I need to
create a link in dirsrv.target.wants to somewhere?
You need to do some steps like ipa-server-install does. I'm
Hi,
On Mon, Nov 14, 2011 at 15:50, Alexander Bokovoy aboko...@redhat.com wrote:
On Mon, 14 Nov 2011, Rich Megginson wrote:
replaced EXAMPLE-COM above and re-replaced it in the output below):
[root@fileserver1 ~]# ls -l /etc/systemd/system/dirsrv.target.wants
total 0
lrwxrwxrwx. 1 root root
On Tue, Nov 15, 2011 at 16:06, Natxo Asenjo natxo.ase...@gmail.com wrote:
On Tue, Nov 15, 2011 at 2:38 PM, Simo Sorce s...@redhat.com wrote:
On Tue, 2011-11-15 at 08:33 -0500, Dan Scott wrote:
Hi,
On Tue, Nov 15, 2011 at 07:07, Natxo Asenjo natxo.ase...@gmail.com wrote:
On Tue, Nov 15, 2011
On Wed, Nov 16, 2011 at 09:23, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I receive the following error when I try to remove a host from IPA:
djscott@pc35:~$ ipa host-del pc60
ipa: ERROR: Certificate operation cannot be completed: Unable to
communicate with CMS
On Wed, Nov 16, 2011 at 14:01, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
On Wed, Nov 16, 2011 at 10:39, Rob Crittendenrcrit...@redhat.com wrote:
Dan Scott wrote:
On Wed, Nov 16, 2011 at 09:23, Rob Crittendenrcrit...@redhat.com
wrote:
Dan Scott wrote:
Hi,
I receive
On Thu, Nov 17, 2011 at 11:25, Adam Young ayo...@redhat.com wrote:
On 11/17/2011 10:58 AM, Dan Scott wrote:
On Wed, Nov 16, 2011 at 14:01, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
On Wed, Nov 16, 2011 at 10:39, Rob Crittendenrcrit...@redhat.com wrote:
Dan Scott wrote
On Thu, Nov 17, 2011 at 11:35, John Dennis jden...@redhat.com wrote:
On 11/17/2011 11:25 AM, Adam Young wrote:
To summarise, the errors are:
SEVERE: Error initializing socket factory
java.lang.ClassNotFoundException: org.mozilla.jss.ssl.SSLSocket
SEVERE: Failed to initialize connector
Hi,
I just tried to add a CA replica to my IPA replica (Both Fedora 15) using:
ipa-ca-install replica-info-ohm.gpg
It proceeds to configure the directory server for the CA, but fails
when 'configuring certificate server':
Configuring certificate server: Estimated time 3 minutes 30 seconds
Hi,
On Thu, Dec 8, 2011 at 13:29, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I just tried to add a CA replica to my IPA replica (Both Fedora 15) using:
ipa-ca-install replica-info-ohm.gpg
It proceeds to configure the directory server for the CA, but fails
when
Hi,
On Fri, Dec 9, 2011 at 09:24, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
On Thu, Dec 8, 2011 at 13:29, Rob Crittendenrcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I just tried to add a CA replica to my IPA replica (Both Fedora 15)
using:
ipa-ca-install
On Thu, Dec 15, 2011 at 11:51, Rich Megginson rmegg...@redhat.com wrote:
On 12/15/2011 09:48 AM, Dan Scott wrote:
Hi,
On Thu, Dec 15, 2011 at 10:58, Rich Megginsonrmegg...@redhat.com wrote:
On 12/15/2011 08:41 AM, Dan Scott wrote:
Hi,
On my Fedora 15 FreeIPA server, I'm having some
On Mon, Dec 19, 2011 at 11:03, Rich Megginson rmegg...@redhat.com wrote:
On 12/19/2011 09:01 AM, Dan Scott wrote:
On Thu, Dec 15, 2011 at 11:51, Rich Megginsonrmegg...@redhat.com wrote:
On 12/15/2011 09:48 AM, Dan Scott wrote:
Hi,
On Thu, Dec 15, 2011 at 10:58, Rich Megginsonrmegg
On Mon, Dec 19, 2011 at 14:14, Simo Sorce s...@redhat.com wrote:
On Mon, 2011-12-19 at 11:01 -0500, Dan Scott wrote:
On Thu, Dec 15, 2011 at 11:51, Rich Megginson rmegg...@redhat.com wrote:
On 12/15/2011 09:48 AM, Dan Scott wrote:
Hi,
On Thu, Dec 15, 2011 at 10:58, Rich Megginsonrmegg
On Thu, Dec 22, 2011 at 10:12, Simo Sorce s...@redhat.com wrote:
On Wed, 2011-12-21 at 17:39 -0500, Dan Scott wrote:
This is possible... oops. I tried a few times to add another replica
(fileserver3) which failed as I mentioned above. The replication
process got most of the way through
On Thu, Dec 22, 2011 at 12:10, Rich Megginson rmegg...@redhat.com wrote:
On 12/22/2011 08:42 AM, Dan Scott wrote:
On Thu, Dec 22, 2011 at 10:12, Simo Sorces...@redhat.com wrote:
On Wed, 2011-12-21 at 17:39 -0500, Dan Scott wrote:
This is possible... oops. I tried a few times to add another
On Wed, Jan 4, 2012 at 13:48, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
Recently I've had some crash/hang problems with my FreeIPA 2
installation which appear solved using the updates-testing version of
freeipa-server (2.1.4-2.fc16.x86_64) which I'm currently running
Hi,
I have recently upgraded one of my FreeIPA servers (Fedora 16) with
the latest package versions:
Feb 15 14:10:19 Updated: libselinux-2.1.6-6.fc16.x86_64
Feb 15 14:10:20 Updated: krb5-libs-1.9.2-6.fc16.x86_64
Feb 15 14:10:21 Updated: systemd-37-13.fc16.x86_64
Feb 15 14:10:22 Updated:
Hi,
On Thu, Feb 16, 2012 at 10:37, Rich Megginson rmegg...@redhat.com wrote:
On 02/16/2012 08:26 AM, Dan Scott wrote:
Hi,
I have recently upgraded one of my FreeIPA servers (Fedora 16) with
the latest package versions:
Feb 15 14:10:19 Updated: libselinux-2.1.6-6.fc16.x86_64
Feb 15 14:10
Hi,
On Thu, Feb 16, 2012 at 11:56, Rich Megginson rmegg...@redhat.com wrote:
On 02/16/2012 09:12 AM, Dan Scott wrote:
Hi,
On Thu, Feb 16, 2012 at 10:37, Rich Megginsonrmegg...@redhat.com wrote:
On 02/16/2012 08:26 AM, Dan Scott wrote:
Hi,
I have recently upgraded one of my FreeIPA
On Thu, Feb 16, 2012 at 14:24, Rich Megginson rmegg...@redhat.com wrote:
On 02/16/2012 10:40 AM, Dan Scott wrote:
Hi,
On Thu, Feb 16, 2012 at 11:56, Rich Megginsonrmegg...@redhat.com wrote:
On 02/16/2012 09:12 AM, Dan Scott wrote:
Hi,
On Thu, Feb 16, 2012 at 10:37, Rich Megginsonrmegg
Hi,
I have another replica install problem.
I ran into some issues a couple of weeks ago when
389-ds-base-1.2.10-0.10.rc1.fc16.x86_64 was released. My master server
is running 389-ds-base-1.2.10-0.6.a6.fc16.x86_64 and I'd like to make
sure I have some good replicas before I go any further.
I'm
Hi,
I have an idea for a new feature. I've been having a lot of problems
with replication recently and I think the following would be useful.
Can we show the replication status of the masters/replicas? And also
show whether they contain a CA?
Something like:
ipa-replica-manage -v list
On Fri, Feb 24, 2012 at 13:43, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I have an idea for a new feature. I've been having a lot of problems
with replication recently and I think the following would be useful.
Can we show the replication status of the masters/replicas
On Fri, Feb 24, 2012 at 15:47, Rich Megginson rmegg...@redhat.com wrote:
On 02/24/2012 09:45 AM, Dan Scott wrote:
Hi,
I have another replica install problem.
I ran into some issues a couple of weeks ago when
389-ds-base-1.2.10-0.10.rc1.fc16.x86_64 was released. My master server
is running
Hi,
I'm having another problem with replica installation - just the CA this time
It looks like there's a problem with SELinux and the pki-ca service:
After configuration, the server can be operated by the command:
/bin/systemctl restart pki-cad@pki-ca.service
2012-02-27 20:33:45,729
Anyone have any suggestions for how I can fix this?
Dan
On Mon, Feb 27, 2012 at 21:06, Dan Scott danieljamessc...@gmail.com wrote:
Hi,
I'm having another problem with replica installation - just the CA this time
It looks like there's a problem with SELinux and the pki-ca service:
After
dogtag specific commands to uninstall and install the ca - but then the
rest of the ipa install scripts would be confused.
Ade
On Wed, 2012-02-29 at 13:44 -0500, Dan Scott wrote:
Anyone have any suggestions for how I can fix this?
Dan
On Mon, Feb 27, 2012 at 21:06, Dan Scott
an error - and should not be a problem unless
its preventing the installation from completing successfully.
Try doing the installation with selinux in permissive mode and see if it
makes a difference.
Ade
On Wed, 2012-02-29 at 16:18 -0500, Dan Scott wrote:
On Wed, Feb 29, 2012 at 16:03
=system_u:object_r:ephemeral_port_t:s0 tclass=tcp_socket
But the install still failed in the same way after I put SELinux into
enforcing mode.
Thanks,
Dan Scott
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo
On Mon, Mar 26, 2012 at 15:53, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I'm having another replica CA install issue. Fedora 16 with latest
updates applied this morning:
ipa-ca-install replica-info-fileserver4.example.com.gpg
[snip]
Configuring certificate server
Can anyone help with this?
Thanks,
Dan
On Mon, Mar 26, 2012 at 16:17, Dan Scott danieljamessc...@gmail.com wrote:
On Mon, Mar 26, 2012 at 15:53, Rob Crittenden rcrit...@redhat.com wrote:
Dan Scott wrote:
Hi,
I'm having another replica CA install issue. Fedora 16 with latest
updates
Hi,
I've been using FreeIPA for a couple of years (Upgraded/Migrated from
FreeIPA 1). The servers are in various states (Some upgraded from
Fedora 10/11 through each release, some fresh installs of Fedora
15/16). I've also had to add/remove replicas many times - and run into
problems installing
On Fri, Apr 13, 2012 at 13:43, Rich Megginson rmegg...@redhat.com wrote:
On 04/13/2012 11:39 AM, Dan Scott wrote:
I'm convinced that my LDAP directories contain lots of cruft which has
built up and is causing problems on my system. There may even be some
corruption since there's an entry which
or so for
the past few months - I was beginning to think that it was beyond
repair! :)
On Fri, Apr 13, 2012 at 14:38, Rich Megginson rmegg...@redhat.com wrote:
On 04/13/2012 12:22 PM, Dan Scott wrote:
On Fri, Apr 13, 2012 at 13:43, Rich Megginsonrmegg...@redhat.com wrote:
On 04/13/2012 11:39 AM
On Fri, Apr 13, 2012 at 15:24, Rich Megginson rmegg...@redhat.com wrote:
On 04/13/2012 01:03 PM, Dan Scott wrote:
If I'm interpreting this correctly, it can't be deleted because it's
not a leaf node, but it doesn't have any sub-entries that I can delete
first.
You are correct. Try
On Fri, Apr 13, 2012 at 16:41, Rich Megginson rmegg...@redhat.com wrote:
On 04/13/2012 02:30 PM, Dan Scott wrote:
On Fri, Apr 13, 2012 at 15:24, Rich Megginsonrmegg...@redhat.com wrote:
It's not a problem until it's a problem :-) I would go ahead and run
CLEANRUV.
I cleaned up a load
On Fri, Apr 13, 2012 at 17:44, Rich Megginson rmegg...@redhat.com wrote:
On 04/13/2012 03:40 PM, Dan Scott wrote:
I cleaned up all the ruv_compare_ruv: RUV [changelog max RUV] does
not contain element errors in the logs for each of fileservers 1, 2
and 3. The ldapsearch for
'((nsuniqueid
On Tue, Apr 17, 2012 at 09:26, Rich Megginson rmegg...@redhat.com wrote:
On 04/17/2012 07:26 AM, Dan Scott wrote:
On Fri, Apr 13, 2012 at 17:44, Rich Megginsonrmegg...@redhat.com wrote:
On 04/13/2012 03:40 PM, Dan Scott wrote:
I cleaned up all the ruv_compare_ruv: RUV [changelog max RUV
On Tue, Apr 17, 2012 at 10:29, Richard Megginson rmegg...@redhat.com wrote:
- Original Message -
On Tue, Apr 17, 2012 at 09:26, Rich Megginson rmegg...@redhat.com
wrote:
On 04/17/2012 07:26 AM, Dan Scott wrote:
On Fri, Apr 13, 2012 at 17:44, Rich Megginsonrmegg...@redhat.com
On Tue, Apr 17, 2012 at 15:32, Rich Megginson rmegg...@redhat.com wrote:
On 04/17/2012 09:59 AM, Dan Scott wrote:
On Tue, Apr 17, 2012 at 10:29, Richard Megginsonrmegg...@redhat.com
wrote:
- Original Message -
On Tue, Apr 17, 2012 at 09:26, Rich Megginsonrmegg...@redhat.com
wrote
Hi,
My FreeIPA servers were in a real mess recently and I think I've
finally got them into a reasonable state by cleaning up the tombstone
entries and fixing some broken replication agreements.
I'm trying to setup a new replica and receive the following error:
Configuring certificate server:
On Tue, Apr 24, 2012 at 02:58, Ondrej Hamada oham...@redhat.com wrote:
On 04/20/2012 09:35 PM, Dan Scott wrote:
On Fri, Apr 20, 2012 at 15:26, Dmitri Pald...@redhat.com wrote:
On 04/20/2012 12:15 PM, Dan Scott wrote:
Hi,
My FreeIPA servers were in a real mess recently and I think I've
Hi,
I'm definitely interested in this too.
You can use
ipa-replica-manage -v list $HOSTNAME
to get detailed status information.
I also found this:
http://directory.fedoraproject.org/wiki/Howto:ReplicationMonitoring
But I believe that it needs to have the Directory Manager password
On Tue, May 8, 2012 at 1:55 AM, free...@noboost.org wrote:
Hi,
Spec:
Red Hat Enterprise Linux Server release 6.2 (Santiago)
ipa-admintools-2.1.3-9.el6.x86_64
ipa-client-2.1.3-9.el6.x86_64
ipa-pki-ca-theme-9.0.3-7.el6.noarch
ipa-pki-common-theme-9.0.3-7.el6.noarch
On Tue, May 8, 2012 at 8:45 PM, free...@noboost.org wrote:
On Tue, May 08, 2012 at 09:43:13AM -0400, Rob Crittenden wrote:
Dan Scott wrote:
On Tue, May 8, 2012 at 1:55 AM,free...@noboost.org wrote:
Hi,
Spec:
Red Hat Enterprise Linux Server release 6.2 (Santiago)
ipa-admintools-2.1.3-9
Hi,
On Wed, May 2, 2012 at 11:13 PM, Rob Crittenden rcrit...@redhat.com wrote:
Rich Megginson wrote:
On 05/02/2012 07:36 PM, Ian Levesque wrote:
On May 2, 2012, at 6:48 PM, Rich Megginson wrote:
Is there any way to expose the nsDS5ReplicationAgreement objectClass
to a less privileged
On Fri, May 18, 2012 at 10:29 AM, Rich Megginson rmegg...@redhat.com wrote:
On 05/18/2012 08:13 AM, Dan Scott wrote:
Hi,
On Wed, May 2, 2012 at 11:13 PM, Rob Crittendenrcrit...@redhat.com
wrote:
Rich Megginson wrote:
On 05/02/2012 07:36 PM, Ian Levesque wrote:
On May 2, 2012, at 6:48
On Fri, May 18, 2012 at 12:21 PM, Rich Megginson rmegg...@redhat.com wrote:
On 05/18/2012 10:06 AM, Dan Scott wrote:
On Fri, May 18, 2012 at 10:29 AM, Rich Megginsonrmegg...@redhat.com
wrote:
On 05/18/2012 08:13 AM, Dan Scott wrote:
Hi,
On Wed, May 2, 2012 at 11:13 PM, Rob
On Fri, May 18, 2012 at 1:52 PM, Rich Megginson rmegg...@redhat.com wrote:
On 05/18/2012 11:46 AM, Dan Scott wrote:
On Fri, May 18, 2012 at 12:38 PM, Rich Megginsonrmegg...@redhat.com
wrote:
On 05/18/2012 10:31 AM, Dan Scott wrote:
On Fri, May 18, 2012 at 12:21 PM, Rich Megginsonrmegg
Hi,
I'm trying to install a new Fedora 17 replica of my existing Fedora 16
FreeIPA servers as part of my migration process.
I first attempted the installation using an old replica file, but ran
into some issues so I uninstalled and generated a new replica file.
Now, when I run the command, I
Hi,
I don't know if this is done by the default IPA install, but you need
to configure it to auto create home directories:
authconfig --update --enablemkhomedir
You may need the oddjob-mkhomedir package installed too.
Thanks,
Dan
On Fri, Jun 29, 2012 at 9:42 AM, george he
Hi,
On Wed, Jul 11, 2012 at 3:04 PM, Qing Chang qch...@sri.utoronto.ca wrote:
I agree with you that OpenAFS should implement better enctype. I'll raise it
on their list. In the mean time, this is a block, do you have an estimate
how
long it takes to have the addition of v4 get into RHEL 6.3?
Hi,
I'm not sure if this is relevant, but Firefox preserves session
cookies across browser restarts. This was discussed on the Security
Now! podcast recently:
http://www.grc.com/sn/sn-360.htm
Search for 'sessionstore' and read a little before and after.
Are session cookies relevant for
Hi,
We've tried starting the service properly - the dirsrv process still
won't start properly:
[25/Sep/2012:13:28:10 -0400] - 389-Directory/1.2.10.14 B2012.201.358 starting up
[25/Sep/2012:13:28:10 -0400] - Detected Disorderly Shutdown last time
Directory Server was running, recovering database.
95 matches
Mail list logo