Strange behavior now with our passwords (and we still haven't solved
our problem with the "ipa" command, but at least with script, we
have a workaround):
I noticed yesterday morning that my password, which has the
following policy, was going to expire in 3 days so I
On Thu, Mar 06, 2014 at 07:39:15AM -0500, Bret Wortman wrote:
> Strange behavior now with our passwords (and we still haven't solved
> our problem with the "ipa" command, but at least with script, we
> have a workaround):
>
> I noticed yesterday morning that my password, which has the
> following
Is there a way to set a password to not expire? I thought I read
somewhere that 0 did that, but apparently not.
On 03/06/2014 07:55 AM, Sumit Bose wrote:
On Thu, Mar 06, 2014 at 07:39:15AM -0500, Bret Wortman wrote:
Strange behavior now with our passwords (and we still haven't solved
our probl
Just found with some fresh Googling an email from Rob recommending
setting the max to 5000. I'll try that.
On 03/06/2014 08:08 AM, Bret Wortman wrote:
Is there a way to set a password to not expire? I thought I read
somewhere that 0 did that, but apparently not.
On 03/06/2014 07:55 AM, Sumit
Hello,
now it is the right time to propose topics for theses in the next university
year.
If you know about some interesting area or feature we don't have time to
implement - propose it!
Current topics are listed on
https://thesis-managementsystem.rhcloud.com/topic/list?filter.categories.id=
On 6.3.2014 14:32, Petr Spacek wrote:
now it is the right time to propose topics for theses in the next university
year.
I propose "[RFE] IPA should support and manage DNS sites"
https://fedorahosted.org/freeipa/ticket/2008
It is rotting in the backlog and we are not going to touch it any time
I have a conflict with a configuration of free-ipa.
The problem is an incompatibility between the client operating system with
fedora 19 and the ipa server with Red hat 6.4 operating system.
When executing the command:
ipa add-service cifs/ipaserver.example.com
Generates the error:
ipa: ER
Once again, I'm probably missing something that's well documented. I
promise I searched.
We have a daily termination list that needs to be enforced at 5:00 PM every
day. I can script it up just fine, but sometimes I like to sneak out early.
I tried to use "at," but since I'm logged out when the
If you don't find an answer for doing it -minus- a ticket, here is what I would
suggest.
Create a service user who's only role permissions give them the ability to
delete users.
Then perform a getkeytab for the user:
ipa-getkeytab -s ipa.example.com -p @EXAMPLE.COM -k
/path/to/username.keytab
That's pretty much exactly what I was looking for.
Thanks JR.
--Jason
On Thu, Mar 6, 2014 at 11:23 AM, JR Aquino wrote:
> If you don't find an answer for doing it -minus- a ticket, here is what I
> would suggest.
>
> Create a service user who's only role permissions give them the ability to
>
Hi all,
I am quite aware that installing ipa-server-trust-ad and using the samba as a
file server is as unsupported as one can get... but I really needed a Samba
server integrated with IPA (damn Mac OS and Windows). I don't actually have a
Windows environment but this seemed to bootstrap enough
On Thu, 06 Mar 2014, Jason Woods wrote:
Hi all,
I am quite aware that installing ipa-server-trust-ad and using the
samba as a file server is as unsupported as one can get... but I really
needed a Samba server integrated with IPA (damn Mac OS and Windows). I
don't actually have a Windows environm
On 03/05/2014 06:24 PM, Trey Dockendorf wrote:
Correction from my email, the condition that sets if a 389DS user is
proxied to pam_krb5 is the "pamFilter", sorry.
On Wed, Mar 5, 2014 at 5:22 PM, Trey Dockendorf wrote:
On Mon, Mar 3, 2014 at 7:29 PM, Dmitri Pal wrote:
On 03/03/2014 07:47 PM,
On 03/06/2014 08:10 AM, Bret Wortman wrote:
Just found with some fresh Googling an email from Rob recommending
setting the max to 5000. I'll try that.
Just make sure it is not after 2038 because Kerberos uses 32 bit time
that rolls over in Feb of 2038.
On 03/06/2014 08:08 AM, Bret Wortman
In 26 years, I guarantee this will be someone else's problem.
Bret Wortman
http://bretwortman.com/
http://twitter.com/BretWortman
> On Mar 6, 2014, at 8:25 PM, Dmitri Pal wrote:
>
>> On 03/06/2014 08:10 AM, Bret Wortman wrote:
>> Just found with some fresh Googling an email from Rob recommend
15 matches
Mail list logo
