Hi,
I have a strange (for me?) situation using MIT KDC together with
Heimdal client. PKINIT/FAST scenario.
STEP 1:
client side:
kinit --anonymous
klist -v
Credentials cache: FILE:/tmp/krb5cc_1000
Principal: WELLKNOWN/ANONYMOUS@WELLKNOWN:ANONYMOUS
Cache version: 4
Server: krbtgt/idm
On Fri, Nov 03, 2017 at 11:12:09AM +0200, Oleksandr Yermolenko via
FreeIPA-users wrote:
> Hi,
>
> I have a strange (for me?) situation using MIT KDC together with
> Heimdal client. PKINIT/FAST scenario.
The OTP implementation of MIT Kerberos is based on
https://www.ietf.org/rfc/rfc6560.txt, I gu
If I have a server that is in a subdomain of my tld for FreeIPA and I want it
to get added into that specific zone during the client install process, the
installer errors out and says that it will only recognize 1 FreeIPA server and
failover to the other will not be possible. Is there some way
Andrew Meyer via FreeIPA-users wrote:
> If I have a server that is in a subdomain of my tld for FreeIPA and I
> want it to get added into that specific zone during the client install
> process, the installer errors out and says that it will only recognize 1
> FreeIPA server and failover to the othe
i'm going to be adding a new machine next week. I'll get screenshots/text
output for you.
On Friday, November 3, 2017 1:54 PM, Rob Crittenden via FreeIPA-users
wrote:
Andrew Meyer via FreeIPA-users wrote:
> If I have a server that is in a subdomain of my tld for FreeIPA and I
> wa
