On Wed, Nov 21, 2018 at 02:22:51PM +, SOLER SANGUESA Miguel via
FreeIPA-users wrote:
> I've been working for 1 year with a configuration that allow us to use AD
> users with short names for login on RHEL 6 clients and also the information
> on the client was showed with shortnames. Example:
On 21.11.18 17:40, Rob Crittenden via FreeIPA-users wrote:
[..]
Yes, masters are all more or less equal, the difference being whether
they run optional services and there are a few roles that only one
master has (CRL manager, renewal manager).
I still do not have a clear picture. Is it true
On 19.10.18 14:15, Rob Crittenden via FreeIPA-users wrote:
Ronald Wimmer via FreeIPA-users wrote:
Hi,
we have been evaluating FreeIPA for quite a while now on our test setup
(1 IPA server, 1 Replica) and are planning to move towards production.
Can the whole setup be migrated from an ipa test
Remco Kranenburg via FreeIPA-users wrote:
> Hi all,
>
> We received a question from one of our auditors about who has the
> permission to do certain actions in FreeIPA itself. This is managed by
> the RBAC system: you can for example configure that certain groups are
> allowed to manage certain
I've been working for 1 year with a configuration that allow us to use AD users
with short names for login on RHEL 6 clients and also the information on the
client was showed with shortnames. Example:
ssh AD_user@IDM_client1.mydomain.com
PASSWORD:
[AD_user@IDM_client1 ~]$ ls -la
total 60
Hi all,
We received a question from one of our auditors about who has the
permission to do certain actions in FreeIPA itself. This is managed by
the RBAC system: you can for example configure that certain groups are
allowed to manage certain parts of FreeIPA.
We currently only have two roles:
On 11/21/18 9:26 PM, Ronald Wimmer via FreeIPA-users wrote:
On 21.11.18 17:40, Rob Crittenden via FreeIPA-users wrote:
[..]
Yes, masters are all more or less equal, the difference being whether
they run optional services and there are a few roles that only one
master has (CRL manager, renewal
Hi,
I'm curious that can OTP of freeipa use with MS AD, it seems it's only
associated with LDAP, judging from https://www.freeipa.org/page/V4/OTP
Any other work around as we are going to use AD as backend user store,
and auth against VPN ( using MSchap auth type, which means it
Hi List,
I am trying to migrate an old FreeIPA 4.3.1 server running on Ubuntu
16.04 to a new FreeIPA 4.5.4 server running on Centos 7.
I am doing the migration via the "ipa migrate-ds" command, the command
is running successfully and the users get migrated, even the custom
schema attributes come
when I deploy freeipa with build-in LDAP( 389 DS), and create user with OTP
password enabled, I can integrate into freeradius with LDAP module to
authenticate against Network Access Service( Switch.etc) with user's password
and OTP password.
My question is that, our vpn only supports MSchap
Ronald Wimmer via FreeIPA-users wrote:
> On 19.10.18 14:15, Rob Crittenden via FreeIPA-users wrote:
>> Ronald Wimmer via FreeIPA-users wrote:
>>> Hi,
>>>
>>> we have been evaluating FreeIPA for quite a while now on our test setup
>>> (1 IPA server, 1 Replica) and are planning to move towards
11 matches
Mail list logo
