On Mon, 2011-05-23 at 04:42 +, Steven Jones wrote:
> Hi,
>
> Why doesnt IPA use std unix UIDs? and how does that translate into Unix
> permissions on a client if it does not?
>
> BTW neat install, under 10mins and its up!
FreeIPA does use standard UNIX UIDs and GIDs. By default, however,
t
On Sun, 2011-05-22 at 21:16 +0200, Sigbjorn Lie wrote:
> Hi,
>
> Is it so that the ipa-client-install script currently available for RHEL
> 5.6 is not yet updated to work with the IPA server released in RHEL 6.1?
That is correct. The ipa-client being released in RHEL 5.7 (and the
forthcoming RHE
On 05/23/2011 07:21 AM, Stephen Gallagher wrote:
> On Sun, 2011-05-22 at 21:16 +0200, Sigbjorn Lie wrote:
>> Hi,
>>
>> Is it so that the ipa-client-install script currently available for RHEL
>> 5.6 is not yet updated to work with the IPA server released in RHEL 6.1?
> That is correct. The ipa-cli
Hi,
I just built a brand new RHEL6.1 64bit server and installed ipa-server and
despite setting up the chkconfig's it wont start on boot...it will start
manually later by hand...
So its not just you.
;]
regards
From: freeipa-users-boun...@redhat.com [fr
um.
I just tried to set myself with user data and I get this, worse I cant revert
the changes so Im stuck in my account.
regards
<>___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
um so I thought there was a 65k limit?
I have way more numerals than that.
Also I need to pick up that UID from somewhere as its part of a users identify
in the identity managment system we havehow would I go about sucking that
out of IPA after the account is provisioned?
regards
Steven
_
On Mon, May 23, 2011 at 08:58:53PM +, Steven Jones wrote:
>
> I just built a brand new RHEL6.1 64bit server and installed ipa-server
> and despite setting up the chkconfig's it wont start on boot...it
> will start manually later by hand...
Works out of the box for my virt-installed virtual
On 05/23/2011 09:11 PM, Christian Horn wrote:
On Mon, May 23, 2011 at 08:58:53PM +, Steven Jones wrote:
I just built a brand new RHEL6.1 64bit server and installed ipa-server
and despite setting up the chkconfig's it wont start on boot...it
will start manually later by hand...
Works out of
That used to be true, but it's been a lot higher for some time now.
Linux has had 32-bit integers for UID/GID since Linux kernel 2.4, and
Solaris has had the same since Solaris 2.5.1.
I can't speak for other *nix flavours.
Rgds,
Siggi.
On 05/23/2011 11:09 PM, Steven Jones wrote:
um so I th
On 05/23/2011 05:09 PM, Steven Jones wrote:
> um so I thought there was a 65k limit?
>
The UID is at least 32 bit on the modern systems as far as I recall and
has been this way for quite some time.
> I have way more numerals than that.
>
> Also I need to pick up that UID from somewhere as its par
On 05/23/2011 05:06 PM, Steven Jones wrote:
> um.
>
> I just tried to set myself with user data and I get this, worse I cant revert
> the changes so Im stuck in my account.
>
> regards
>
>
>
> ___
> Freeipa-users mailing list
> Freeipa-users@redhat.c
I was populating the fields for me (jonesst1) as a user
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Dmitri Pal [d...@redhat.com]
Sent: Tuesday, 24 May 2011 9:34 a.m.
To: freeipa-users@redhat.com
Subject: Re: [
On 05/22/2011 04:16 AM, Sigbjorn Lie wrote:
On 05/17/2011 07:24 PM, Rich Megginson wrote:
On 05/17/2011 06:40 AM, Sigbjorn Lie wrote:
On 05/16/2011 04:56 PM, Rich Megginson wrote:
On 05/16/2011 08:43 AM, Sigbjorn Lie wrote:
On 05/16/2011 03:52 PM, Simo Sorce wrote:
On Sat, 2011-05-14 at 16:4
On 05/23/2011 11:37 PM, Rich Megginson wrote:
On 05/22/2011 04:16 AM, Sigbjorn Lie wrote:
On 05/17/2011 07:24 PM, Rich Megginson wrote:
On 05/17/2011 06:40 AM, Sigbjorn Lie wrote:
On 05/16/2011 04:56 PM, Rich Megginson wrote:
On 05/16/2011 08:43 AM, Sigbjorn Lie wrote:
On 05/16/2011 03:52 PM
I added another CPU now 2 and went to 4gb of ramfrom 1, seems
overkillanyway
I have a screen shot of the error while booting, attached.
regards
Steven
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Steven
On 05/23/2011 03:59 PM, Sigbjorn Lie wrote:
On 05/23/2011 11:37 PM, Rich Megginson wrote:
On 05/22/2011 04:16 AM, Sigbjorn Lie wrote:
On 05/17/2011 07:24 PM, Rich Megginson wrote:
On 05/17/2011 06:40 AM, Sigbjorn Lie wrote:
On 05/16/2011 04:56 PM, Rich Megginson wrote:
On 05/16/2011 08:43 AM
Hi,
Seems there is a change from 6.1 beta /earlier IPA to laterI now find that
clients cant use dns as its deniedas attached screenshotis this setting
in IPA itself? or named.conf?
regards<>___
Freeipa-users mailing list
Freeipa-users@r
On 05/23/2011 05:38 PM, Steven Jones wrote:
> I was populating the fields for me (jonesst1) as a user
What kind of fields?
Adam I wonder if this is an ACI problem with self service UI.
Can you please take a look?
Steven, can you use CLI?
What is the output of the
ipa user-show jonesst1 --raw
As per attachment.
I worked through most of the fields setting values
If I go back into the user ie me I cant exit it keeps telling me to revert or
save.even though Ive done no changes.
regards
Steven
From: Dmitri Pal [d...@redhat.com]
Sent: T
On 05/23/2011 07:25 PM, Steven Jones wrote:
> So even though I have the same versions I get the mis-match error., as per
> 5.6...except these did differ.
Firewall?
> :(
>
> regards
>
>
>
>
> ___
> Freeipa-users mailing list
> Freeipa-users@redhat.com
>
I just did another user and it happens when I populate teh user's manager
fieldI hit update, it goes blank and then I cant revert or save.
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Steven Jones [ste
turned it off, same failure.
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Dmitri Pal [d...@redhat.com]
Sent: Tuesday, 24 May 2011 11:34 a.m.
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] Server - client
On 05/23/2011 07:41 PM, Steven Jones wrote:
> I just did another user and it happens when I populate teh user's manager
> fieldI hit update, it goes blank and then I cant revert or save.
Are you using the latest RHEL bits or the tip from upstream?
> regards
>
On 05/23/2011 07:45 PM, Steven Jones wrote:
> turned it off, same failure.
>
There are multiple protocols... did you turn it off completely or just
poke holes?
What about DNS?
Does the client resolve the server correctly?
Can you specify the server explicitly on the client command line? Would
the r
Latest 6.1 full downloaded and patched, ws and svr.
I have a different error off 5.6 when I try, as attachedgetting a http 401
and not 200
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Dmitri Pa
On 05/23/2011 07:55 PM, Steven Jones wrote:
> Latest 6.1 full downloaded and patched, ws and svr.
>
> I have a different error off 5.6 when I try, as attachedgetting a http
> 401 and not 200
I have seen it somewhere last week...
Was this a some kind of the DNS resolution issue?
Rob?
> r
On 05/23/2011 07:58 PM, Steven Jones wrote:
> When its on I poked holes through it, to test I did service iptables stop...
>
> Here's the iptables -L -n output (attached)
>
This is as much as I can help.
Hopefully there is enough info for developers to see what is going on.
> regards
> __
? Can you specify the server explicitly on the client command line? Would the
result be different?
same 401
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
looking at the install log its not resolving the server via DNS, Im now getting
resolvining issues
Suggests the integrated DNS is poked...
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Dmitri Pal [d...@redhat.c
ignore that i was making a typodoh.
Included is the install log.shows that same error as 5.6 in the log
"2011-05-24 12:58:10,407 DEBUG stderr=HTTP response code is 401, not 200"
looks like its the ipa-join thats failing
From: freeipa-us
ran the ipa-join manually and krb5.conf was not configured, scp'd that over
from the ipa-server and re-ran ipa-join, still getting the same 401 failure...
regards
From: freeipa-users-boun...@redhat.com [freeipa-users-boun...@redhat.com] on
behalf of Steve
Steven Jones wrote:
ran the ipa-join manually and krb5.conf was not configured, scp'd that over
from the ipa-server and re-ran ipa-join, still getting the same 401 failure...
This is a different mismatch than you were seeing with 5.6 (and a
completely different error message).
A few things
Steven Jones wrote:
I just did another user and it happens when I populate teh user's manager
fieldI hit update, it goes blank and then I cant revert or save.
Manager is broken in 6.1, or at best, non-intuitive. It wants a dn and
not a login. We've fixed this upstream so it does the trans
It needs to be disabled then as it locks up the gui and its then stuffed
regards
From: Rob Crittenden [rcrit...@redhat.com]
Sent: Tuesday, 24 May 2011 2:27 p.m.
To: Steven Jones
Cc: d...@redhat.com; Adam Young; freeipa-users@redhat.com
Subject: Re: [Fre
Hi,
1) Screen data of the install from using the -d option. (attach d.out)
2) ipa-install log
3) there are no httpd logs in /var/log/httpd/ it is an empty directory.
4) "Did you also run kinit before manually
running ipa-join in your testing?" Yes
5) For DNS I added,
allow query {any;}
ie on FDS I think you can do an export to a flat file and then import
itthat way the backup client can backup a flatfile and not attempt to do
the database
regards
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.c
Hi,
On Mon, May 23, 2011 at 11:20:27PM +0200, Sigbjorn Lie wrote:
>
> My issue is startup of IPA only occurs when the host is extremely
> busy, such as after a reboot of the host machine when the disk is
> grinding and the cpu is almost going up in flames of all the virtual
> machines starting at
37 matches
Mail list logo
