On 08/04/2015 03:10 PM, Thomas Lau wrote:
> Does anyone know how could I check if client enrolled or not?
>
> trying to automate enrollment process by using generic tool since I am
> using Ubuntu, only ipa-client-install available.
Hello Thomas,
I am not aware of some general API/CLI for that. i
On (06/08/15 07:47), Torsten Harenberg wrote:
>Am 06.08.15 um 07:37 schrieb Torsten Harenberg:
>> (see plot attached
>
>forgot the attachment
>
Is the high IO caused by sssd or by other aplication?
If it is casued by other application then you can mount
directory with sss cache (/var/lib/sss or j
On Thu, Aug 06, 2015 at 09:55:09AM +0200, Martin Kosek wrote:
> On 08/04/2015 03:10 PM, Thomas Lau wrote:
> > Does anyone know how could I check if client enrolled or not?
> >
> > trying to automate enrollment process by using generic tool since I am
> > using Ubuntu, only ipa-client-install avail
Hey guys,
I'll try to make a tutorial soon, sorry I'm quite in a rush these days :)
General idea:
On FreeIPA (4.1)
- `ipa-adtrust-install --add-sids` (creates ipaNTsecurityidentifier
attribude, also known as SID)
- regenerate each user password to build ipaNTHash attribute, not here by
default o
Hi,
OK, this sounds already quite logical, but I'm still refering to the
old howto we found earlier, does that one still apply somewhere or not
at all ?
Thanks,
Matt
2015-08-06 12:23 GMT+02:00 Youenn PIOLET :
> Hey guys,
>
> I'll try to make a tutorial soon, sorry I'm quite in a rush these da
Christopher Lamb wrote:
Hi
In order to better assist on another thread in this list, I installed
FreeIPA Server in a throwaway VM.
Unfortunately the FreeIPA Server Install repeatedly fails with:
Configuration of client side components failed!
ipa-client-install returned: Command ''/usr/sbin/i
Am Freitag, 1. Mai 2015, 21:21:09 schrieb Martin:
> Sorry, first post went to Ludwig only. Now to the list as well.
>
> Am 30.04.2015 um 13:36 schrieb Ludwig Krispenz:
> >>> indicating that trimming works.
> >>
> >> As it seems my trimming is broken, at least partially. Is there
> >> something I
@Youenn. Thanks for the clarification. At least 3 Integration paths, so we
may end up with 3 Wiki how-tos:
@Matt I now have a throwaway VM with FreeIPA 4.1 Server installed, that I
can play around with over the next few days, but as this is "in my free
time, on the train on the way home" type acti
Hello Guys,
I was able to resolve this today.
My webserver and dirsrv certificate were expired yesterday and trying to
replace them gave me the same error "ERROR: (SEC_ERROR_LIBRARY_FAILURE)
security library failure."
So I tried some things to resolve this.
The trick was to replace /etc/ipa/ca.crt
Hi,
There is no Active Directory in my solution, just freeipa adtrust
extensions - necessary to generate SIDs.
To me, there are 3 integration paths:
- ldapsam module without AD, using LDAP directly : you need samba
extensions in FreeIPA's LDAP, that's what you tried to achieve in this
thread.
- k
10 matches
Mail list logo