[Freeipa-users] Re: Here we go again, configuring Proxmox/Debian Stretch 9.3 as a FreeIPA client

Yeah, also I noticed that on Saturday a new version was uploaded to unstable, I'll have to recheck. On Fri, Jan 19, 2018 at 7:56 AM, Andrew Radygin wrote: > Hi Alex! > I've set up on Debian 8 ipa-client recently. > And here is my notes on this process, maybe it would be helpfull. > > 1. Enable s

[Freeipa-users] Re: Vault best practices

On 01/21/2018 04:28 PM, Fil Di Noto via FreeIPA-users wrote: I've been using Vaults, I feel like I need some kind of version control, or historical log of values to recover from mistakenly overwriting vaults. What do most do? I notice that some docs have vault-add commands with a --source-va

[Freeipa-users] Re: Forwarders don't work when enabled but do work when disabled

Hi, I needed to respond on this one, sorry for my delay. I were Forward Zones with Zone Forwarders. I finally fixed it all with delegation, or am I wrong here ? Thanks, Matt ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To un

[Freeipa-users] Request for input on installing IPA onto ARM/SoC boards

We get questions periodically on installing IPA onto SoC boards, mostly ARM and usually a Pi (Banana or Raspberry). We'd like to add a wiki page or howto with tips on known workarounds. We'd also like to get some use cases on why you'd want to run IPA on something like this. Is it just an experim

[Freeipa-users] FOSDEM reminder: Identity and Access Management devroom, Feb 3rd 2018

Hi, If you are in Europe during first weekend of February 2018, we'll be running an Identity and Access Management devroom at FOSDEM[1] on Saturday, February 3rd, 2018. FreeIPA and other free/open source identity and access management solutions will be presented there. FOSDEM is a primary free s

[Freeipa-users] Re: Forwarders don't work when enabled but do work when disabled

I still cannot say without details 2018-01-22 16:14 GMT+01:00 Matt . via FreeIPA-users < freeipa-users@lists.fedorahosted.org>: > Hi, > > I needed to respond on this one, sorry for my delay. > > I were Forward Zones with Zone Forwarders. I finally fixed it all with > delegation, or am I wrong her

[Freeipa-users] AD accounts unavailable from clients

Hi, I have a working trust between my IPA server and an AD domain, I can lookup accounts and login to the IPA-server using AD accounts. I am however unable to to do the same when I connect a client to the IPA-server, the local IPA-accounts are available such as admin, but not AD accounts. I hav

[Freeipa-users] New Graphic?

I noticed there is a new logo design on freeipa.org. Is it possible to get the scalable version of this for a printed banner? ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@li

[Freeipa-users] Re: Request for input on installing IPA onto ARM/SoC boards

I'm just starting, but: $ free -m totalusedfree shared buff/cache available Mem: 1791 680 274 72 835 833 Swap: 0 0 0 This is for personal use, so being able to run a replica at home for

[Freeipa-users] Re: AD accounts unavailable from clients

If the trust was added successfully and IPA servers were promoted to Trust Controllers or Trust Agents with ipa-adtrust-install then you followed the necessary setup steps. The 's2n' log messages are client-specific requests made to the IPA server for AD trust user and group information. These

[Freeipa-users] Re: Forwarders don't work when enabled but do work when disabled

Which details do you need ? ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org

[Freeipa-users] Re: Forwarders don't work when enabled but do work when disabled

How does look zone delegation, how is configured forwardzone. 2018-01-23 0:28 GMT+01:00 Matt . via FreeIPA-users < freeipa-users@lists.fedorahosted.org>: > Which details do you need ? > ___ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahoste

[Freeipa-users] Freeipa / IDM on a VM

Anybody running their freeipa / IDM cluster on a 100% virtualized environment? We are running the full stack - DNS, ldap, Certs etc and I’m wondering if we can run it all on a VM environment. My concern is the chicken/egg scenario in case of a full DC recovery. Thoughts? Thanks. __

[Freeipa-users] ipa-restore: a bytes-like object is required, not 'str'

On a fresh installed IPA server where I do a backup and restore right after installation I get: a bytes-like object is required, not 'str' The ipa-restore command failed. See /var/log/iparestore.log for more information 2018-01-23T04:05:29Z DEBUG stderr= 2018-01-23T04:05:29Z DEBUG Creating log d

[Freeipa-users] Re: Request for input on installing IPA onto ARM/SoC boards

Agreed.  I would love to run this on a raspberry pi or better. Get Yahoo Mail for Mobile On Mon, Jan 22, 2018 at 14:25, Alex Corcoles via FreeIPA-users wrote: ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe

[Freeipa-users] Re: Private PEN for OID not accepted

Hi, Thanks, you got me in the right direction as well! Cheers, Matt ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org

[Freeipa-users] Re: Freeipa / IDM on a VM

On 01/23/2018 03:49 AM, Grace Thompson via FreeIPA-users wrote: > Anybody running their freeipa / IDM cluster on a 100% virtualized > environment? We are running the full stack - DNS, ldap, Certs etc and I’m > wondering if we can run it all on a VM environment. My concern is the > chicken/egg s