And, using the ipa command is only possible on ipa clients.
Although our Satellite server is an IPA client, I am (as of yet) unable to
execute ipa commands from any ipa client prior to the re-install request
from Satellite. There is, afaik, no such thing as a pre-reinstall hook or
anything like
Can you confirm that using a password without % or ( in it resolves the
issue?
On Thu, 2013-01-24 at 16:32 -0500, Rob Crittenden wrote:
小龙 陈 wrote:
Hi everyone,
I have been having trouble getting FreeIPA set up on Fedora 18.
ipa-server-install
keeps failing at the [2/20]: configuring
I need to add a few users that can authenticate with IPA (LDAP, in some
cases, kerberos in others), but can't SSH into hosts.
I'm guessing the best option is to use some sort of group restriction on
the SSH /host side, vs anything else in IPA?
Thanks!
On 01/25/2013 03:35 AM, Fred van Zwieten wrote:
And, using the ipa command is only possible on ipa clients.
Although our Satellite server is an IPA client, I am (as of yet)
unable to execute ipa commands from any ipa client prior to the
re-install request from Satellite. There is, afaik, no
On Fri, Jan 25, 2013 at 10:43 AM, Dmitri Pal d...@redhat.com wrote:
AFAIK there is also some kind of no shell capability in SSH which might be
useful in this case but I am not a specialist in this area.
You can do this a few ways, but the easiest (IMO) is something like
this in sshd_config:
Hi Matthew,
Yes, as said earlier ipa disable-host fqdn; ipa host-mod fqdn
--password=foo works flawlessly. The issue lies with attempting to reuse
foo as the password, the IPA sever prevents that (and rightly so) which
complicates automation hence the RFE.
Charlie.
On Thu, Jan 24, 2013 at 4:34
Hi Fred
Little unsure about what you mean here. What is it you're trying to do
exactly? Do you mean you can't run IPA commands on your satellite server?
Do you just need to install ipa-admin-tools?
Do you mean IPA commands don't work on a IPA client until the client is
enrolled? That would make
On Sat, Jan 26, 2013 at 2:13 AM, Charlie Derwent
shelltoesupers...@gmail.com wrote:
Hi Fred
Little unsure about what you mean here. What is it you're trying to do
exactly? Do you mean you can't run IPA commands on your satellite server?
Do you just need to install ipa-admin-tools?
Do you
Hi,
On Thu, Jan 24, 2013 at 01:36:04PM -0800, Eric Chennells wrote:
[windows kerberos client]
Is anyone aware of if there is an LDAP related configuration needed? It
seems like only setting up the kerberos authentication is not enough.
The only working way with unmodified [1] Windows as