On Wed, 2009-12-09 at 15:16 +0800, Michael Kang wrote:
> Does anyone know what's wrong?
>
> On Tue, Dec 8, 2009 at 12:35 PM, Michael Kang
> wrote:
> Dear all,
>
> I had setup a FreeIPA server and a FreeIPA client. After using
> the ktutil command to import the key
On Wednesday 09 December 2009 08:16:45 Michael Kang wrote:
> > ssh ad...@*ipaserver*.example.com (This don't need passwd.)
> >
> > PC or Mac:
> > ssh ad...@*ipaclient*.example.com (This still need passwd.)
> >
OpenSSH has disabled gssapi (kerberos) support by default for client and
server. You ha
Generally, I've found that this is caused by incorrect DNS records.
Make sure that your A and PTR records are correct for this host.
One other thing, you should be able to run ipa-getkeytab directly on the client.
Hope this helps,
Dan Scott
http://danieljamesscott.org
On Wed, Dec 9, 2009 at 02:
Dear all,
There are three virtual machines:
Name: ipa.aragon.local
Address: 192.168.8.88
Name: client.aragon.local
Address: 192.168.3.33
Name: node.aragon.local
Address: 192.168.4.44
DNS is working well(Both A and PTR records)
On Wed, Dec 9, 2009 at 8:30 PM, Dan Scott wrote:
> Generally
output of ssh -v ipaserver.example.com:
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug1: Next authentication method: gssapi-with-mic
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug1: Authentications that can continue:
publick
Hi Rob,
Just want to know if there is an issue with the replication mechanism of
FreeIPA.
I have installed my own self-signed certificate for use with IPA and I can't
get my replica installation going. I also tried replicating using the default
certificate included but I can't push through.
