On 04/13/2017 01:00 PM, Alexander Bokovoy wrote:
> Password history is stored in passwordHistory attribute. This attribute
> is not returned by default, one have to specify it explicitly.
thanks!
--
/dev/null
signature.asc
Description: OpenPGP digital signature
--
Manage your subscription
:
ipa-server-4.4.0-14.el7.centos.6.x86_64, obviously running on CentOS 7.
I would highly appreciate any pointers as to where I could find the
history of password hashes!
Thanks!
Richard
--
/dev/null
signature.asc
Description: OpenPGP digital signature
--
Manage your subscription for the Freeipa
or pull requests:
https://github.com/obscureorganization/ipa-tools/issues/1
Thanks again go to Robert Crittenden and Red Hat for everything you've
done to improve identity management!
--
Richard Bullington-McGuire <rbull...@obscure.org> +1 571 236 0938
President of The Obscure Organi
.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/PlaceIQ>
<https://www.facebook.com/PlaceIQ>
command:
track: yes
auto-renew: yes
We are moving to latest version on RHEL so we’ll have paid support but before
than, gaining this understanding is massively valuable :)
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim R
<http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/PlaceIQ>
<https://www.facebook.com/PlaceIQ> &l
placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/PlaceIQ>
<https://www.facebook.com/PlaceIQ> <https://www.linkedin.com/compan
laceiq.net
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/PlaceIQ>
<https://www.fa
>
> On 10/04/2016 06:25 AM, Richard Harmonson wrote:
> > After successful installation and use of DNS with forwarding first on a
> > Master and Replica, several days pass then it stops. Using 'ipactl
> > status' shows named service stopped. Using 'ipactl restart' serv
After successful installation and use of DNS with forwarding first on a
Master and Replica, several days pass then it stops. Using 'ipactl status'
shows named service stopped. Using 'ipactl restart' services, DNS is
running but stops again several days later. Rinse and repeat.
All other services
bad certs
shell: ipa-getcert stop-tracking -i {{ item }}
with_items: "{{ my_id.stdout_lines }}"
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/p
bad certs
shell: ipa-getcert stop-tracking -i {{ item }}
with_items: "{{ my_id.stdout_lines }}"
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/p
Can I and how…
delete all certs for all hosts
I mean, we only use FreeIPA for user login/sssd
That said, do we even need those certs?
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <
@placeiq.net', add=True):
CertificateOperationError
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <ht
Hi Paul, 3.0.0 on Centos 6.8
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/Plac
Sorry folks! Sent to the wrong list.
Please disregard.
On Thu, Sep 29, 2016 at 6:10 AM, Richard Harmonson <
richard.harmon...@gmail.com> wrote:
> I am unable to change the display for a Fedora 24 Workstation using Gnome
> 3.20 from its default 1024 x 768. I, also, tried a num
I am unable to change the display for a Fedora 24 Workstation using Gnome
3.20 from its default 1024 x 768. I, also, tried a number of spins but the
behavior persist. Installing on a physical desktop does not reproduce the
symptom. Installing CentOS 7 does not reproduce the symptom.
Under the
-find
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq> <https://www.facebook.com/PlaceIQ>
<https://www.face
: (SEC_ERROR_LEGACY_DATABASE) The certificate/key
database is in an old, unsupported format.
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https://twitter.com/placeiq> <https://twitter.com/placeiq>
<https://twitter.com/placeiq
: id-kp-serverAuth,id-kp-clientAuth
pre-save command:
post-save command: /usr/lib64/ipa/certmonger/restart_httpd
track: yes
auto-renew: yes
<http://www.placeiq.com/> <http://www.placeiq.com/> <http://www.placeiq.com/>
Jim Richard <https:/
DNS hosts. Bizarre!
Not exactly a blocker for I assume I can add it after the installation.
On Mon, Sep 12, 2016 at 1:41 AM, Martin Basti <mba...@redhat.com> wrote:
>
>
> On 11.09.2016 20:15, Richard Harmonson wrote:
>
> Is there an option to disable the various DNS chec
On Mon, Sep 12, 2016 at 6:01 AM, Rob Crittenden <rcrit...@redhat.com> wrote:
> Richard Harmonson wrote:
>
>> Is there an option to disable the various DNS checks using
>> ipa-server-install with FreeIPA 4.3.2? Is there plans to do provide the
>> option in future rele
Is there an option to disable the various DNS checks using
ipa-server-install with FreeIPA 4.3.2? Is there plans to do provide the
option in future releases? Reviewing the ipa-server-install man page, I am
not seeing it.
I want to compliment the team for placing safeguards on the installation of
Q.NET
default_realm = IDM-AD.PLACEIQ.NET
I think my clients use the localauth plugin but I’m not entirely sure. If so,
how can I configure its behavior?
Jim Richard
SYSTEM ADMINISTRATOR III
(646
On Wed, Aug 3, 2016 at 12:49 AM, Florence Blanc-Renaud <f...@redhat.com>
wrote:
> On 08/02/2016 04:52 AM, Richard Harmonson wrote:
>
>> On Mon, Aug 1, 2016 at 10:15 AM, Petr Vobornik <pvobo...@redhat.com
>> <mailto:pvobo...@redhat.com>> wrote:
>>
>&g
On Mon, Aug 1, 2016 at 10:15 AM, Petr Vobornik <pvobo...@redhat.com> wrote:
> On 07/31/2016 07:45 AM, Richard Harmonson wrote:
> > I having challenges resuming ipa-server-install --external-ca. I am
> reasonably
> > confident I am not providing the right certificate and/o
I having challenges resuming ipa-server-install --external-ca. I am
reasonably confident I am not providing the right certificate and/or format
from my off-line root CA using 389 and Dogtag.
Does anyone have instructions on how to accomplish the task of exporting
the correct certificates in the
Hi,
I found a workaround for this problem.
I installed nscd and now it works, i will file a bug-report since the
application
doesnt perform the get user id correct.
// Richard
2015-06-16 15:01 skrev Simo Sorce:
On Tue, 2015-06-16 at 14:50 +0200, richard wrote:
Hi,
I have made a trace
(PSTRING const , PSTRING const ,
int, JSTRING const ) ()
#23 0x08059106 in EXCO::Initiate(void) ()
#24 0x0805a355 in EXCO::Edit(void) ()
#25 0x080544f5 in main ()
// Richard
2015-06-15 15:34 skrev Simo Sorce:
On Sun, 2015-06-14 at 20:53 +0200, richard wrote:
Hi,
We are about to implement
, so will the
script not run.
I would need some help to get around this problem.
Is it possible to configure a keytab for the suid user so that this user
always have a valid ticket?
// Richard
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo
- Original Message -
We have been using FreeIPA since two years and were more than happy. But
since two weeks we are facing unexpected crashed and can not really debug
the strange behaviours. The crashes are definitely not caused by connecting
a new system or changing the LDAP schema
- Original Message -
Hi Dimitri,
I can do, we already analyzed it once.
There is a loadbalancer checking the ldap protocol which seems to be
seen as fail.
Is there a check I can perform on the ldap ports to see if the service
is available without generating the errors ?
If
to be able to make this work as well but as of now it looks like my
only option if I want to upgrade to version 3.3/Centos 7 is well, there is no
option….
I’d be happy to share or help in any way.
Jim Richard | PlaceIQ
http://www.google.com/url?q=http%3A%2F%2Fwww.placeiq.com%2Fsa=Dsntz=1usg
r any clues you can provide.Jim Richard |PlaceIQ| Systems Administrator | jrichard@placeiq.com|+1 (646) 338-8905
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freeipa.org for more info on the project
I'm trying to debug a script that is supposed to auto-setup kerberos for
Hadoop. Its not working, and I've boiled down the problem to the fact that
for some reason, it wants to use DES as the encryption type. There is no
good reason for this, since both freeIPA and Hadoop support modern
I suddenly started getting errors when I try to use ipa-getkeytab:
[root@ipa1 kerberize]# ipa-getkeytab -s jn01 -p hdfs/jn01 -k
jn01.hdfs.keytab
SASL Bind failed Can't contact LDAP server (-1) !
ldap seems to be answering on the non-SASL port (ei: ldapsearch -x -h
localhost CN=richard works fine
.
Has any one configured vcenter to authenticate against freeipa, with
booth users and groups working?
// Richard
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freeipa.org for more info on the project
2014-11-04 21:02 skrev Rob Crittenden:
richard wrote:
We are trying to configure vcenter 5.5 to authenticate against freeipa
instead of AD.
Its working for single users, we can update passwd in freeipa and they
can authenticate aganinst vcenter.
But we are not able to get the groups to work
- Original Message -
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
Why do you need to change the verbosity of access logging? Do you mean error
logging? If so, see http://port389.org/wiki/FAQ#Troubleshooting
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
I am using FreeIPA 3.0.0 on RHEL 6 (ipa-server-3.0.0-37.el6.x86_64).
Where do I change the verbosity of access logging?
Why do you need
- Original Message -
On Tue, May 13, 2014 at 2:26 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
On Tue, May 13, 2014 at 1:28 PM, Richard Megginson
rmegg...@redhat.comwrote:
- Original Message -
I am using FreeIPA 3.0.0
.
This is apparently fixed in 3.2.
Cheers,
--
Richard Clark
rich...@fohnet.co.uk
signature.asc
Description: Digital signature
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
- Original Message -
On 06/05/2012 05:55 PM, Richard Megginson wrote:
- Original Message -
On Mon, April 23, 2012 20:38, Rich Megginson wrote:
Ok. The current theory is that the memory growth is caused by
the
churn
of entries being added to and removed from
- Original Message -
On Tue, Apr 17, 2012 at 09:26, Rich Megginson rmegg...@redhat.com
wrote:
On 04/17/2012 07:26 AM, Dan Scott wrote:
On Fri, Apr 13, 2012 at 17:44, Rich Megginsonrmegg...@redhat.com
wrote:
On 04/13/2012 03:40 PM, Dan Scott wrote:
I cleaned up all the
44 matches
Mail list logo