Re: [Freeipa-users] ntp and srv records

it as a convenience, not a requirement. -- - *question everything*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646

Re: [Freeipa-users] Certificate system unavailable [solved]

On 08/07/2014 05:27 PM, Lucas Yamanishi wrote: On 08/07/2014 04:48 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/07/2014 01:25 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: Hello, I'm a bit of a pickle with the PKI system. I have three replicas, but only one contains the CA. I

[Freeipa-users] Certificate system unavailable

*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xD354B2CB -- Manage your subscription for the Freeipa-users mailing list

Re: [Freeipa-users] Certificate system unavailable

On 08/07/2014 01:25 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: Hello, I'm a bit of a pickle with the PKI system. I have three replicas, but only one contains the CA. I realize how poor a decision it was to do that. I plan to create more complete replicas, but right now I can't even

Re: [Freeipa-users] Certificate system unavailable

On 08/07/2014 04:48 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/07/2014 01:25 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: Hello, I'm a bit of a pickle with the PKI system. I have three replicas, but only one contains the CA. I realize how poor a decision it was to do

Re: [Freeipa-users] Non-human users

/groups. That should prevent puppet from detecting the LDAP group. -- - *question everything*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xE23F3D7A

Re: [Freeipa-users] LDAP authentication in third-party apps and password policy

- *question everything*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xE23F3D7A On 09/14/2012 12

Re: [Freeipa-users] sssd client cache timer and merging IPA domains

On 08/20/2012 12:09 PM, Lucas Yamanishi wrote: On 08/20/2012 08:44 AM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/17/2012 08:38 AM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/16/2012 05:39 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/16/2012 05:32 PM, Rob

Re: [Freeipa-users] sssd client cache timer and merging IPA domains

On 08/17/2012 08:38 AM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/16/2012 05:39 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/16/2012 05:32 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: I just migrated my IPA instance from one to another a couple days ago to recover

Re: [Freeipa-users] sssd client cache timer and merging IPA domains

dirsrv-EXAMPLE/errors log after changing a password: [15/Aug/2012:12:38:24 -0400] ipapwd_setPasswordHistory - [file ipapwd_common.c, line 926]: failed to generate new password history! - *question everything*learn something*answer nothing* Lucas Yamanishi

Re: [Freeipa-users] sssd client cache timer and merging IPA domains

On 08/16/2012 05:32 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: I just migrated my IPA instance from one to another a couple days ago to recover after a lost CA and failed yum upgrade. The ipa migrate-ds tool works very well, though I am having a few very minor issues. On the upside

Re: [Freeipa-users] sssd client cache timer and merging IPA domains

On 08/16/2012 05:39 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: On 08/16/2012 05:32 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: I just migrated my IPA instance from one to another a couple days ago to recover after a lost CA and failed yum upgrade. The ipa migrate-ds tool works

Re: [Freeipa-users] backup plan

* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xE23F3D7A On 08/13/2012 07:14 PM, bin.e...@gmail.com wrote: Hi all, I've been doing a bit

[Freeipa-users] Dogtag reinitialization

instance as a whole. So, how can I fix this? I do have the private key, if that's any use. -- - *question everything*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515

Re: [Freeipa-users] Dogtag reinitialization

* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. NASA Space and Earth Science Data Analysis (606.9) 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xE23F3D7A On 08/08/2012 05:36 PM, Rob Crittenden wrote: Lucas Yamanishi wrote: Is there any

[Freeipa-users] Custom ACI entries

, delete) (userdn = ldap:///self; or groupdn = ldap:///cn=Manage custom attributes,cn=permissions,cn=pbac,dc=sesda2,dc=com);) -- - *question everything*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. 7515 Mission

[Freeipa-users] Replica promotion and CA serial testing

*learn something*answer nothing* Lucas Yamanishi -- Systems Administrator, ADNET Systems, Inc. 7515 Mission Drive, Suite A100 Lanham, MD 20706 * 301-352-4646 * 0xE23F3D7A signature.asc Description: OpenPGP digital signature

[Freeipa-users] Reverse-proxy for the WebUI

Hello, Has anybody successfully configured a reverse proxy for the web ui? I've tried a few different setups to no avail. My goal is to allow self-service from the Internet. Lucas signature.asc Description: OpenPGP digital signature ___