What is the preferred IPA platform for performing this endeavor?
Would it be best to create an environment, virtual or physical, that has
RHEL6 update 4 fully patched and IdM installed?
or would
Fedora 18 with the
http://jdennis.fedorapeople.org/ipa-devel/fedora/18/x86_64/os/
yum repository
Rodney L. Mercer wrote:
What is the preferred IPA platform for performing this endeavor?
Would it be best to create an environment, virtual or physical, that has
RHEL6 update 4 fully patched and IdM installed?
or would
Fedora 18 with the
On 02/25/2013 02:29 PM, Mercer, Rodney wrote:
I think that this is a good explanation or the solaris rbac model.
http://www.softpanorama.org/Solaris/Security/solaris_rbac.shtml
Regards,
Rodney.
I will definitely read it. But assume I did.
What are the next steps?
The schema is the right one
AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] RHEL6 IPA and Active Directory
synchronisation and Solaris RBAC
On 02/15/2013 10:31 PM, Dmitri Pal wrote:
On 02/15/2013 09:17 AM, Rodney L. Mercer wrote:
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree
:
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com]
on behalf of Sigbjorn Lie [sigbj...@nixtra.com]
Sent: Saturday, February 16, 2013 6:29 AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] RHEL6 IPA and Active Directory
synchronisation and Solaris RBAC
On 02
[sigbj...@nixtra.com]
Sent: Saturday, February 16, 2013 6:29 AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] RHEL6 IPA and Active Directory synchronisation
and Solaris RBAC
On 02/15/2013 10:31 PM, Dmitri Pal wrote:
On 02/15/2013 09:17 AM, Rodney L. Mercer wrote:
On Thu, 2013-02-14
: [Freeipa-users] RHEL6 IPA and Active Directory synchronisation
and Solaris RBAC
On 02/15/2013 10:31 PM, Dmitri Pal wrote:
On 02/15/2013 09:17 AM, Rodney L. Mercer wrote:
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree with schema support being enough for now. I do not expect
On 02/15/2013 03:17 PM, Rodney L. Mercer wrote:
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree with schema support being enough for now. I do not expect the
ipa mgmt tools to support Solaris rbac mgmt.
The ipa mgmt tools are great, but I already have other data in the ipa
On 02/15/2013 10:31 PM, Dmitri Pal wrote:
On 02/15/2013 09:17 AM, Rodney L. Mercer wrote:
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree with schema support being enough for now. I do not expect the
ipa mgmt tools to support Solaris rbac mgmt.
The ipa mgmt tools are great,
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Sigbjorn Lie [sigbj...@nixtra.com]
Sent: Saturday, February 16, 2013 6:29 AM
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] RHEL6 IPA and Active Directory
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree with schema support being enough for now. I do not expect the
ipa mgmt tools to support Solaris rbac mgmt.
The ipa mgmt tools are great, but I already have other data in the ipa
ldap that I have to manage manually anyway.
On 02/15/2013 09:17 AM, Rodney L. Mercer wrote:
On Thu, 2013-02-14 at 21:44 +0100, Sigbjorn Lie wrote:
I agree with schema support being enough for now. I do not expect the
ipa mgmt tools to support Solaris rbac mgmt.
The ipa mgmt tools are great, but I already have other data in the ipa
On 02/13/2013 04:10 PM, Rob Crittenden wrote:
Also since we also require compatibility with Solaris, and roles (RBAC)
is currently used on Solaris, does IPA support RBAC on Solaris ? (We
noticed that RBAC mentioned in the IPA web interface only relates to IPA
management).
No, IPA doesn't
Sigbjorn Lie wrote:
On 02/13/2013 04:10 PM, Rob Crittenden wrote:
Also since we also require compatibility with Solaris, and roles (RBAC)
is currently used on Solaris, does IPA support RBAC on Solaris ? (We
noticed that RBAC mentioned in the IPA web interface only relates to IPA
management).
On Thu, 2013-02-14 at 18:56 +0100, Sigbjorn Lie wrote:
On 02/13/2013 04:10 PM, Rob Crittenden wrote:
Also since we also require compatibility with Solaris, and roles (RBAC)
is currently used on Solaris, does IPA support RBAC on Solaris ? (We
noticed that RBAC mentioned in the IPA web
On Thu, 14 Feb 2013, Rob Crittenden wrote:
Sigbjorn Lie wrote:
On 02/13/2013 04:10 PM, Rob Crittenden wrote:
Also since we also require compatibility with Solaris, and roles
(RBAC)
is currently used on Solaris, does IPA support RBAC on Solaris ? (We
noticed that RBAC mentioned
Dag Wieers wrote:
On Thu, 14 Feb 2013, Rob Crittenden wrote:
Sigbjorn Lie wrote:
On 02/13/2013 04:10 PM, Rob Crittenden wrote:
Also since we also require compatibility with Solaris, and roles
(RBAC)
is currently used on Solaris, does IPA support RBAC on Solaris ?
(We
noticed
Dag Wieers wrote:
Hi,
We are investigating whether IPA is an acceptable solution for our
environment. One of the aspects that is not clear (from reading the
documentation and testing it without AD) is whether the synchronization
with AD can be limited to a subset.
Since we would like to only
On 02/13/2013 08:10 AM, Rob Crittenden wrote:
Dag Wieers wrote:
Hi,
We are investigating whether IPA is an acceptable solution for our
environment. One of the aspects that is not clear (from reading the
documentation and testing it without AD) is whether the synchronization
with AD can be
Hi,
You can specify a --winsubtree, provided all the users you want are in that, I
think that will work.
For filters, Ive suggested that, we have so much garbage in our AD that its
cluttering IPA badly. eg we have hundred templates, so I'd like to block those
from being transferred.
regards
On 02/13/2013 09:58 AM, Dag Wieers wrote:
Hi,
We are investigating whether IPA is an acceptable solution for our
environment. One of the aspects that is not clear (from reading the
documentation and testing it without AD) is whether the
synchronization with AD can be limited to a subset.
: [Freeipa-users] RHEL6 IPA and Active Directory synchronisation and
Solaris RBAC
On 02/13/2013 09:58 AM, Dag Wieers wrote:
Hi,
We are investigating whether IPA is an acceptable solution for our
environment. One of the aspects that is not clear (from reading the
documentation and testing it without AD
22 matches
Mail list logo
