Hello !
I configured my IPA server 3.0.0.42 without SSL/TLS access to the LDAP and
I would like to enable this for the ldap.
Is there something specific to use with FreeIPA or may I follow the DS389
doc
http://directory.fedoraproject.org/docs/389ds/howto/howto-ssl.html#configuring-tlsssl-enabled-
On 01/08/2016 11:58 AM, bahan w wrote:
> Hello !
>
> I configured my IPA server 3.0.0.42 without SSL/TLS access to the LDAP and
> I would like to enable this for the ldap.
>
> Is there something specific to use with FreeIPA or may I follow the DS389
> doc
> http://directory.fedoraproject.org/docs
Hi all,
I tried to install freeipa server (freeipa-server.armv7hl 4.2.3-
1.1.fc23), but the installation failed.
-
Configuring NTP daemon (ntpd)
[1/4]: stopping ntpd
[2/4]: writing configuration
[3/4]: configuring ntpd to start on boot
On 01/08/2016 01:06 PM, Markus Roth wrote:
Hi all,
I tried to install freeipa server (freeipa-server.armv7hl
4.2.3-1.1.fc23), but the installation failed.
-
Configuring NTP daemon (ntpd)
[1/4]: stopping ntpd
[2/4]: writing configuratio
Re.
I installed the server like this :
###
ipa-server-install -r -n --hostname=
-p '' -a '' --no-ntp --no-ssh --no-sshd -U
###
And for the clients :
###
ipa-client-install --domain= --realm= --fixed-primary
--server= --principal=admin --password=''
--mkhomedir --hostname= --no-ntp --no-ssh --n
Hello !
I send you this mail, because I have a problem with a user who needs keytab
and password.
I already sent a mail some time ago, and the answer was to use the option
-P of the ipa-getkeytab command.
I'm still running IPA 3.0.0-42 with RHEL 6.6 for specific reasons and I
cannot move to earli
On Fri, 08 Jan 2016, bahan w wrote:
Hello !
I send you this mail, because I have a problem with a user who needs keytab
and password.
I already sent a mail some time ago, and the answer was to use the option
-P of the ipa-getkeytab command.
I'm still running IPA 3.0.0-42 with RHEL 6.6 for speci
Re.
Thank you for your answer, I forgot to re-add Freeipa-users mailing list.
So I cannot modify the userPassword only and when I generate a keytab with
ipa-getkeytab it doesn't update the userPassword.
Do you know if it is normal behaviour for ipa-getkeytab ? If not, was it
solved in a newer ver
Hello,
If I go to active users, click Add, fill in log, first and last name, then
click "Add", I get the error message:
Operations error: Allocation of a new value for range cn=posix
ids,cn=distributed numeric assignment plugin,cn=plugins,cn=config failed!
Unable to proceed.
I also tried to add a
On Fri, 08 Jan 2016, Karl Forner wrote:
Hello,
If I go to active users, click Add, fill in log, first and last name, then
click "Add", I get the error message:
Operations error: Allocation of a new value for range cn=posix
ids,cn=distributed numeric assignment plugin,cn=plugins,cn=config failed!
On Fri, 2016-01-08 at 15:49 +0100, bahan w wrote:
> Re.
>
> Thank you for your answer, I forgot to re-add Freeipa-users mailing list.
>
> So I cannot modify the userPassword only and when I generate a keytab with
> ipa-getkeytab it doesn't update the userPassword.
> Do you know if it is normal be
> If you never added users through this IPA server, it has no subset of ID
> range
> allocated to IDs issued on this server. To obtain this subset, it needs
> to talk back to the master on first allocation. Master is missing, thus
> it couldn't talk to it.
>
thanks.
But if I understand, I just ca
On Fri, 08 Jan 2016, Karl Forner wrote:
If you never added users through this IPA server, it has no subset of ID
range
allocated to IDs issued on this server. To obtain this subset, it needs
to talk back to the master on first allocation. Master is missing, thus
it couldn't talk to it.
thanks.
Ok.
I read a work-around on https://blog-rcritten.rhcloud.com/?p=50
It says that if one has figured out a safe new range for the replica, the
range could be set using:
ldapmodify -x -D 'cn=Directory Manager' -W
Enter LDAP Password:
dn: cn=Posix IDs,cn=Distributed Numeric Assignment Plugin,cn=plu
On Fri, 08 Jan 2016, Karl Forner wrote:
Ok.
I read a work-around on https://blog-rcritten.rhcloud.com/?p=50
It says that if one has figured out a safe new range for the replica, the
range could be set using:
ldapmodify -x -D 'cn=Directory Manager' -W
Enter LDAP Password:
dn: cn=Posix IDs,cn=Di
Karl Forner wrote:
> Hello,
>
> If I go to active users, click Add, fill in log, first and last name,
> then click "Add", I get the error message:
> Operations error: Allocation of a new value for range cn=posix
> ids,cn=distributed numeric assignment plugin,cn=plugins,cn=config
> failed! Unable t
Alexander Bokovoy wrote:
> On Fri, 08 Jan 2016, Karl Forner wrote:
>> Ok.
>>
>> I read a work-around on https://blog-rcritten.rhcloud.com/?p=50
>>
>> It says that if one has figured out a safe new range for the replica, the
>> range could be set using:
>>
>> ldapmodify -x -D 'cn=Directory Manager'
>
> I purposely used rather weak working in my blog to ensure that one
> thinks carefully about making this kind of change. If your original
> master can be brought back up that is definitely the best way to resolve
> it.
>
ok, I'll try this first.
>
> If it was nuked from orbit then yeah the yo
Karl Forner wrote:
>
>
> I purposely used rather weak working in my blog to ensure that one
> thinks carefully about making this kind of change. If your original
> master can be brought back up that is definitely the best way to
> resolve it.
>
>
> ok, I'll try this first.
>
>
> >
> > I am not sure to follow. The default used my master is
> > 13400-13420 right ?
> > So I could set 13500-13520 for instance. Or did I miss something
> ?
> >
> >
>
> My example was based on the ldif you proposed.
>
> What the DNA plugin would have done is split the original ra
20 matches
Mail list logo
