Re: [Freeipa-users] Virtual Machines??

2013-07-09 Thread Артур Файзуллин
Try to use iburst option, that has helped me, sometimes time goes wrong on VM. but now I do use phisical server. В Пн, 08/07/2013 в 15:49 +0200, Schmitt, Christian пишет: Hello, is there currently a good way to install FreeIPA or IdM in virtual machines? Currently we having some Windows

Re: [Freeipa-users] named (DNS) dumping core

2013-07-09 Thread James Hogarth
Yes, it looks like we ran into the same bug. We will schedule an update for our IPA servers soon to address this issue. As a heads up you can do these one at a time and for this particular issue it doesn't require a full IPA restart... Just named. When we updated ours after the srpm got

Re: [Freeipa-users] Virtual Machines??

2013-07-09 Thread natxo asenjo
On 07/08/2013 03:49 PM, Schmitt, Christian wrote: Hello, is there currently a good way to install FreeIPA or IdM in virtual machines? Currently we having some Windows Hyper-V Hypervisors since we are planning to buy some Dell Hardware that can't run Linux yet, the Dell VRTX. Also we want to

[Freeipa-users] Where is ipa-client RPMs for RHEL/CENTOS4?

2013-07-09 Thread Vitaly
I have a few RHEL4.9 boxes and I need to join them to IPA2 domain. Unfortunately, there is no ipa-client RPM available for RHEL/CENTO4. Somewhere I saw suggestion to use ipa-client package from CENTOS5, but of course, it fails because older glibc. In the same time, many sources speak about RHEL4

Re: [Freeipa-users] FreeIPA Client Setup in Windows 7 Ubuntu

2013-07-09 Thread Aissa
Vijay Thakur vijay.thakur@... writes: Dear All List Members, I have installed and configured FreeIPA Server 2.2.1 in Fedora 17. All is working very fine at server end. I have successfully configure my Centos 6.0 Box as FreeIPA Client. Now i have to set up FreeIPA clients of Ubuntu

Re: [Freeipa-users] Where is ipa-client RPMs for RHEL/CENTOS4?

2013-07-09 Thread Rob Crittenden
Vitaly wrote: I have a few RHEL4.9 boxes and I need to join them to IPA2 domain. Unfortunately, there is no ipa-client RPM available for RHEL/CENTO4. Somewhere I saw suggestion to use ipa-client package from CENTOS5, but of course, it fails because older glibc. In the same time, many sources

Re: [Freeipa-users] What happened to my {cacert,kdc}.pem files?

2013-07-09 Thread Rob Crittenden
Brian Vetter wrote: We had to shut down our FREEIPA server and move it. When I brought it back up again today (all same IPs, network, etc), it failed to come up. I see lots of various forms of the following messages when trying to start the ipa, named, and other services: What do you mean

Re: [Freeipa-users] What happened to my {cacert,kdc}.pem files?

2013-07-09 Thread Brian Vetter
Here is the directory listing ... On Jul 8, 2013, at 8:13 PM, Rich Megginson wrote: On 07/08/2013 06:15 PM, Brian Vetter wrote: We had to shut down our FREEIPA server and move it. When I brought it back up again today (all same IPs, network, etc), it failed to come up. I see lots of

Re: [Freeipa-users] What happened to my {cacert,kdc}.pem files?

2013-07-09 Thread Rich Megginson
On 07/09/2013 12:49 PM, Brian Vetter wrote: Here is the directory listing ... On Jul 8, 2013, at 8:13 PM, Rich Megginson wrote: On 07/08/2013 06:15 PM, Brian Vetter wrote: We had to shut down our FREEIPA server and move it. When I brought it back up again today (all same IPs, network, etc),

Re: [Freeipa-users] What happened to my {cacert,kdc}.pem files?

2013-07-09 Thread Rich Megginson
On 07/09/2013 01:08 PM, Brian Vetter wrote: Copying dse.ldif.bak worked. Great! Are these systems running on a VM? Thanks, Brian On Jul 9, 2013, at 1:53 PM, Rich Megginson wrote: On 07/09/2013 12:49 PM, Brian Vetter wrote: Here is the directory listing ... On Jul 8, 2013, at 8:13 PM,

Re: [Freeipa-users] Glaring hole in AIX telnet regarding HBAC rules

2013-07-09 Thread KodaK
On Mon, Jul 8, 2013 at 12:50 PM, Rob Crittenden rcrit...@redhat.com wrote: HBAC is enforced by sssd, so no sssd, no HBAC. I think you need to use pam_access to limit users in AIX. I have some work-arounds now, but I'd like to find a way to automate them. What I need is a way to ask IPA who