Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

Petr, I changed both the host file (actually did that before emailing) and now I have changed the DNS manually in LDAP. I restart ipa and it still fails on DNS startup. It says the following (after I manually start everything else) May 29 13:16:15 ip- named[9076]: set up managed

Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

John, I see the following when I ran that first command. sudo certutil -d /etc/httpd/alias -L -h internal Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Go Daddy Secure

Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

On 29.5.2013 15:50, John Moyer wrote: I changed both the host file (actually did that before emailing) and now I have changed the DNS manually in LDAP. I restart ipa and it still fails on DNS startup. It says the following (after I manually start everything else) May 29 13:16:15

Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

John Moyer wrote: John, I see the following when I ran that first command. sudo certutil -d /etc/httpd/alias -L -h internal Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI

Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

Rob, MyIPA I believe was installed by IPA. I did everything you suggested, the below is what it looks like now. certutil -d /etc/httpd/alias -L -h internal Certificate Nickname Trust Attributes

Re: [Freeipa-users] Installing a Godaddy Cert with ipa-server-certinstall

John Moyer wrote: Rob, MyIPA I believe was installed by IPA. I did everything you suggested, the below is what it looks like now. certutil -d /etc/httpd/alias -L -h internal Certificate Nickname Trust Attributes

[Freeipa-users] Suppressing the domain section after authentication

Hello I have set up gitolite3 and its working fine when I connect to it through ssh. I am using LDAP (FreeIPA) for authorization. When I connect through http/https, I am authenticated, but I believe authorization is not working. I have not been able to figure how to work around it.. git clone

Re: [Freeipa-users] Suppressing the domain section after authentication

William Muriithi wrote: Hello I have set up gitolite3 and its working fine when I connect to it through ssh. I am using LDAP (FreeIPA) for authorization. When I connect through http/https, I am authenticated, but I believe authorization is not working. I have not been able to figure how to

Re: [Freeipa-users] Suppressing the domain section after authentication

On Wed, May 29, 2013 at 10:55 PM, William Muriithi william.murii...@gmail.com wrote: Hello I have set up gitolite3 and its working fine when I connect to it through ssh. I am using LDAP (FreeIPA) for authorization. When I connect through http/https, I am authenticated, but I believe

Re: [Freeipa-users] Suppressing the domain section after authentication

Rob, The question is, how would I coerce apache or kerberos to pass gitolite only section before the @ character? With mod_auth_kerb = 5.4 you can use KrbLocalUserMapping on to strip the realm. rob Thanks a lot, that did it. I added KrbLocalUserMapping On And it worked perfectly.