Re: [Freeipa-users] freeipa / sudo

> On 12/10/2014 04:54 PM, Chris Card wrote: >> >> >>> On 12/10/2014 12:57 PM, Chris Card wrote: >>> thanks Martin, > I've installed freeipa 4.1.1 on Fedora 21, and successfully set up a > freeipa server and a freeipa client machine. > I've set up a user with ssh keys, and can suc

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

On 10.12.2014 20:20, Dmitri Pal wrote: > On 12/10/2014 06:55 AM, Gianluca Cecchi wrote: >> On Tue, Dec 9, 2014 at 10:50 AM, Martin Kosek > > wrote: >> >> On 12/09/2014 12:50 AM, Gianluca Cecchi wrote: >> > On Mon, Dec 8, 2014 at 7:17 PM, Gianluca Cecchi >> mail

Re: [Freeipa-users] freeipa / sudo

On 12/11/2014 09:42 AM, Chris Card wrote: > >> On 12/10/2014 04:54 PM, Chris Card wrote: >>> >>> > On 12/10/2014 12:57 PM, Chris Card wrote: thanks Martin, >> I've installed freeipa 4.1.1 on Fedora 21, and successfully set up a >> freeipa server and a freeipa client machine.

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

On Thu, Dec 11, 2014 at 10:19 AM, Petr Spacek wrote: > > Link to the how-to was added to: > http://www.freeipa.org/page/HowTos#Virtualization > > -- > Petr^2 Spacek > > > thanks! Gianluca -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/free

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

On 12/10/2014 08:20 PM, Dmitri Pal wrote: > On 12/10/2014 06:55 AM, Gianluca Cecchi wrote: >> On Tue, Dec 9, 2014 at 10:50 AM, Martin Kosek > > wrote: >> >> On 12/09/2014 12:50 AM, Gianluca Cecchi wrote: >> > On Mon, Dec 8, 2014 at 7:17 PM, Gianluca Cecchi >> m

Re: [Freeipa-users] freeipa / sudo

> On 12/11/2014 09:42 AM, Chris Card wrote: >> >>> On 12/10/2014 04:54 PM, Chris Card wrote: > >> On 12/10/2014 12:57 PM, Chris Card wrote: > thanks Martin, >>> I've installed freeipa 4.1.1 on Fedora 21, and successfully set up a >>> freeipa server and a freeipa clien

Re: [Freeipa-users] freeipa / sudo

On 12/11/2014 01:57 PM, Chris Card wrote: >> On 12/11/2014 09:42 AM, Chris Card wrote: >>> On 12/10/2014 04:54 PM, Chris Card wrote: > > >> >>> On 12/10/2014 12:57 PM, Chris Card wrote: >> thanks Martin, I've installed freeipa 4.1.1 on Fedora 21, and successfully s

Re: [Freeipa-users] Unit pki-tomcatd@pki-tomcat.service entered failed state @ vanilla install on jessie – with log attached

> Am Dienstag, 9. Dezember 2014, 23:52:08 schrieb chymian: > > Am Dienstag, 9. Dezember 2014, 09:49:04 schrieb Ade Lee: > > On Tue, 2014-12-09 at 13:54 +0100, chymian wrote: > > > hey people, > > > > > > after a successful install of ipa 4.0.5-2 on jessie, the named services > > > started flawles

Re: [Freeipa-users] [Freeipa-interest] Announcing FreeIPA 4.1.2 - NEED HELP WITH 2FA/OTP!!!

On 12/11/2014 08:56 AM, Niranjan M.R wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 12/09/2014 11:14 PM, thierry bordaz wrote: On 12/09/2014 04:07 PM, thierry bordaz wrote: On 12/09/2014 11:15 AM, thierry bordaz wrote: On 12/09/2014 10:48 AM, Niranjan M.R wrote: On 12/09/2014 02:57

Re: [Freeipa-users] freeipa / sudo

On 12/11/2014 08:08 AM, Martin Kosek wrote: On 12/11/2014 01:57 PM, Chris Card wrote: On 12/11/2014 09:42 AM, Chris Card wrote: On 12/10/2014 04:54 PM, Chris Card wrote: On 12/10/2014 12:57 PM, Chris Card wrote: thanks Martin, I've installed freeipa 4.1.1 on Fedora 21, and successfully set

Re: [Freeipa-users] Unit pki-tomcatd@pki-tomcat.service entered failed state @ vanilla install on jessie – with log attached

On Tue, 2014-12-09 at 23:52 +0100, chymian wrote: > Am Dienstag, 9. Dezember 2014, 09:49:04 schrieb Ade Lee: > > > On Tue, 2014-12-09 at 13:54 +0100, chymian wrote: > > > > hey people, > > > > > > > > after a successful install of ipa 4.0.5-2 on jessie, the named > services started flawless du

[Freeipa-users] Replica re-initialization

I have a cluster of four IPA masters that should be performing fully meshed replication. I discovered yesterday that a recently created user only existed on a single master. After looking through all four masters, it appears that several recent updates only exist on one of the masters. I do not

[Freeipa-users] Forest trust and AD child domain

Hello, We have been following the AD integration guide for IPAv3: http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup Our setup is: • 2 domain controllers with Windows 2008 R2 AD DC -> windows.com as Forest Root Domain and acme.windows.com

Re: [Freeipa-users] Forest trust and AD child domain

On Thu, Dec 11, 2014 at 06:45:49PM +0100, Manuel Lopes wrote: > Hello, > > > We have been following the AD integration guide for IPAv3: > http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup > > > > Our setup is: > > • 2 domain controllers with Windows 2008 R2 AD DC -> windows.com >

[Freeipa-users] Host based 2FA ?

I'd like to be able to require 2FA on *certain* hosts and allow just passwords on others. It seems you can check both "passwords" and "2FA" under the user. I was hoping I could create a HBAC such that certain hosts would only allow 2FA, but I can't see an obvious way to do that. Is it poss

Re: [Freeipa-users] Host based 2FA ?

On 12/11/2014 06:32 PM, free...@pettyvices.com wrote: I'd like to be able to require 2FA on *certain* hosts and allow just passwords on others. It seems you can check both "passwords" and "2FA" under the user. I was hoping I could create a HBAC such that certain hosts would only allow 2FA,

[Freeipa-users] Forest trust and AD child domain

Hi Sumit, Thank you very much for the prompt reply [root@support1 ~]# ipa trustdomain-find windows.com Domain name: windows.com Domain NetBIOS name: WINDOWS Domain Security Identifier: S-1-5-21-1701591335-3855227394-3044674468 Domain enabled: True Domain name: acme.windows.com Domain

[Freeipa-users] Trusted Realm Across IPA Servers

Hi All, I have requirement to access the service under different IPA servers, can some one help me on this... IPA Servers are running on V3. -Eldo--- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/