On 3.12.2014 04:35, Dmitri Pal wrote:
> On 12/02/2014 08:54 PM, Matthew Herzog wrote:
>> Any other ideas? I just spun up a new VM and took the defaults on everything
>> while running ipa-server-install (the defaults did make sense) and my new VM
>> can't resolve -anything- in the domain in which it
Hello, FreeIPA list!
About a month ago I promised to write a detailed tutorial about FreeIPA domain
setup,
including both Linux and Unix (FreeBSD) clients, and now it's ready!
Use this link to download the tutorial:
https://cloud.mail.ru/public/c3209284323e/FreeIPA%20-%20FreeBSD.docx
I would hi
On 12/3/14 3:56 AM, Орхан Касумов wrote:
>
> Hello, FreeIPA list!
>
> About a month ago I promised to write a detailed tutorial about
> FreeIPA domain setup,
> including both Linux and Unix (FreeBSD) clients, and now it's ready!
>
> Use this link to download the tutorial:
> https://cloud.mail.ru/pu
Hi,
iam trying to setup a cross-realm relationship.
Generated krbtgt cross-realm principals on both KDCs with the same
password and kvno:
krbtgt/REALM_B (MIT Kerberos)@REALM_A (FreeIPA 3.3.5)
krbtgt/REALM_A@REALM_B
getprinc on REALM_A KDC for principal krbtgt/REALM_B@REALM_A:
Number of keys: 4
Of course: https://cloud.mail.ru/public/a3f4a72d9744/freeipa-freebsd.odt
Wed, 03 Dec 2014 08:15:51 -0500 от Michael Tiernan :
>On 12/3/14 3:56 AM, Орхан Касумов wrote:
>>
>> Hello, FreeIPA list!
>>
>> About a month ago I promised to write a detailed tutorial about
>> FreeIPA domain setup,
>> i
On Wed, 03 Dec 2014, Andreas Ladanyi wrote:
Hi,
iam trying to setup a cross-realm relationship.
Generated krbtgt cross-realm principals on both KDCs with the same
password and kvno:
krbtgt/REALM_B (MIT Kerberos)@REALM_A (FreeIPA 3.3.5)
krbtgt/REALM_A@REALM_B
getprinc on REALM_A KDC for princi
Good morning, I have a fairly new ipa domain (server version 3.0.0-42 and
clients mixed 3.0.0-37 and 3.0.0-42) set up with a mix of rhel6, rhel5 and
solaris. It seemed like my sudo config using sssd in rhel6.5 was working and
then we patched to 6.6 and it is broken. I had followed these setup
i
On Wed, Dec 03, 2014 at 06:05:23AM -0800, sipazzo wrote:
> Good morning, I have a fairly new ipa domain (server version 3.0.0-42 and
> clients mixed 3.0.0-37 and 3.0.0-42) set up with a mix of rhel6, rhel5 and
> solaris. It seemed like my sudo config using sssd in rhel6.5 was working and
> then
On (03/12/14 06:05), sipazzo wrote:
>Good morning, I have a fairly new ipa domain (server version 3.0.0-42 and
>clients mixed 3.0.0-37 and 3.0.0-42) set up with a mix of rhel6, rhel5 and
>solaris. It seemed like my sudo config using sssd in rhel6.5 was working and
>then we patched to 6.6 and it
Hi all..
Was on vacation - now I'm back. Have a new problem I thought I would run
by you --
I have replica agreements between a server and 3 others. They all show
up in ipa-replica-manage list, BUT when I try to disconnect one of them :
ipa: INFO: Replication Update in progress: FALSE: stat
Here is a bit of baffling one on 4.0.5:
Replica install p11-kit???
Connection from master to replica is OK.
Connection check OK
p11-kit: ipa.p11-kit: x-public-key-info: invalid or unsupported attribute
Configuring NTP daemon (ntpd)
[1/4]: stopping ntpd
[2/4]: writing configuration
...
Your
On 12/03/2014 04:40 PM, Janelle wrote:
Here is a bit of baffling one on 4.0.5:
Replica install p11-kit???
This is a part of the DNSSEC set of packages.
Connection from master to replica is OK.
Connection check OK
p11-kit: ipa.p11-kit: x-public-key-info: invalid or unsupported attribute
Con
Thanks -- still a bit strange that it did not show up on some servers -
vary random and intermittent.
BTW - a bit of information others might find useful. If you try to use
the "LDAP" portion of IPA for authentication - rather than fulling
installing the IPA client and using Kerberos - the se
On 4.12.2014 05:02, Janelle wrote:
> Thanks -- still a bit strange that it did not show up on some servers - vary
> random and intermittent.
>
> BTW - a bit of information others might find useful. If you try to use the
> "LDAP" portion of IPA for authentication - rather than fulling installing t
14 matches
Mail list logo
