On Fri, 10 Jun 2016, lejeczek wrote:
On Fri, 2016-06-10 at 12:12 +0300, Alexander Bokovoy wrote:
On Fri, 10 Jun 2016, Jakub Hrozek wrote:
> On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > hi everyone
> >
> > there is a master IPA which in some weird way puts AD users into
> > its
On Fri, 10 Jun 2016, Jan Karásek wrote:
Hi,
I am trying to setup external DNS for IPA with AD trust.
I have set all records in DNS according doc but in the internal IPA DNS I can
see 3 more DNS records which are not mentioned in doc. They were set
automatically during ipa trust-add commnad I
On Fri, 2016-06-10 at 12:12 +0300, Alexander Bokovoy wrote:
> On Fri, 10 Jun 2016, Jakub Hrozek wrote:
> > On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > > hi everyone
> > >
> > > there is a master IPA which in some weird way puts AD users into
> > > its ldap
> > > catalog. I say
Hello,
Am Freitag, 10. Juni 2016, 10:12:50 CEST schrieb Martin Basti:
> On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
> > Hello,
> >
> > can any help me to clear a question for DNSSEC, NSEC3
> >
> > I have a domain created with bind and DNSSEC and NSEC3 I test this Domain
> > and other,
On Fri, 10 Jun 2016, lejeczek wrote:
On Fri, 2016-06-10 at 12:12 +0300, Alexander Bokovoy wrote:
On Fri, 10 Jun 2016, Jakub Hrozek wrote:
> On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > hi everyone
> >
> > there is a master IPA which in some weird way puts AD users into
> > its
On Fri, 10 Jun 2016, lejeczek wrote:
On Fri, 2016-06-10 at 11:01 +0200, Jakub Hrozek wrote:
On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> hi everyone
>
> there is a master IPA which in some weird way puts AD users into
> its ldap
> catalog. I say weird cause there is no trust nor
On 10.6.2016 14:21, Günther J. Niederwimmer wrote:
> Hello,
>
> Am Freitag, 10. Juni 2016, 10:12:50 CEST schrieb Martin Basti:
>> On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
>>> Hello,
>>>
>>> can any help me to clear a question for DNSSEC, NSEC3
>>>
>>> I have a domain created with bind
Alexander, here you go.
One thing that came to mind that might the a problem. My Active directory is
adserver.addomain.comwhile IPA is ipax1.ipadomain; there is no suffix. Not sure
if that would matter.
Anyway here is the log as requested.
Thank you.
net ads lookup -d 10 -S
On 10.06.2016 17:33, Günther J. Niederwimmer wrote:
Am Freitag, 10. Juni 2016, 15:26:39 CEST schrieb Petr Spacek:
On 10.6.2016 14:21, Günther J. Niederwimmer wrote:
Hello,
Am Freitag, 10. Juni 2016, 10:12:50 CEST schrieb Martin Basti:
On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
On 10.06.2016 18:14, Günther J. Niederwimmer wrote:
Am Freitag, 10. Juni 2016, 18:01:32 CEST schrieb Martin Basti:
On 10.06.2016 17:33, Günther J. Niederwimmer wrote:
Am Freitag, 10. Juni 2016, 15:26:39 CEST schrieb Petr Spacek:
On 10.6.2016 14:21, Günther J. Niederwimmer wrote:
Hello,
Am
Am Freitag, 10. Juni 2016, 15:26:39 CEST schrieb Petr Spacek:
> On 10.6.2016 14:21, Günther J. Niederwimmer wrote:
> > Hello,
> >
> > Am Freitag, 10. Juni 2016, 10:12:50 CEST schrieb Martin Basti:
> >> On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
> >>> Hello,
> >>>
> >>> can any help me
Prashant Bapat wrote:
Hi,
I'm using FreeIPA's LDAP component as user database in another
application. The binds happen using the user's credentials
(password+otp) and the search happens by a service account created under
cn=sysaccounts.
Things are working as expected except one small hitch.
Hello
I have been going through the lists but i have not found the answer i am
looking for. I am seeing few issues for which i am looking for some
clarification.
1. What is the relationship between replication time and cache size?
- I am noticing that it's taking up to 5 minutes for some things
Awesome, Thanks Rob, I am looking forward to it.
Randy
Randy Morgan
CSR
Department of Chemistry and Biochemistry
Brigham Young University
801-422-4100
On 6/10/2016 11:51 AM, Rob Crittenden wrote:
Randy Morgan wrote:
So I have a slightly different question. Redhat Summit is the end of
this
So I have a slightly different question. Redhat Summit is the end of
this month, and I was wondering why FreeIPA was not doing a presentation
at the summit? This is a subject I would be very interested in at the
summit.
Randy
--
Randy Morgan
CSR
Department of Chemistry and Biochemistry
Randy Morgan wrote:
So I have a slightly different question. Redhat Summit is the end of
this month, and I was wondering why FreeIPA was not doing a presentation
at the summit? This is a subject I would be very interested in at the
summit.
Randy
IPA will be there in at least these
Dear Paul,
Thanks for your suggestion. It worked.
By the way, using -i option I had to change sudocmd definition in IPA
SERVER, to the " /bin/bash -c /path/to/target_cmd" then after -i option
worked successfully.
Thanks a lot.
On Jun 6, 2016 8:33 PM, "Brennan, Paul J"
That’s exactly right, and we got the files and links back to serviceable order.
Now we're (merely) facing issues with our restored certificate store, which the
pki-tomcatd process is not happy with. All IPA services start normally except
for tomcat, which spits out SSL errors (and we're pretty
On Fri, 2016-06-10 at 11:01 +0200, Jakub Hrozek wrote:
> On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > hi everyone
> >
> > there is a master IPA which in some weird way puts AD users into
> > its ldap
> > catalog. I say weird cause there is no trust nor other sync
> > established,
And, from the 'ipactl -d --ignore-service-failures restart' we get this:
ipa: DEBUG: stderr=
ipa: DEBUG: wait_for_open_ports: localhost [8080, 8443] timeout 300
ipa: DEBUG: Waiting until the CA is running
ipa: DEBUG: Starting external process
ipa: DEBUG: args='/usr/bin/wget' '-S' '-O' '-'
Do you know the vendor name on the booth, or will it be under Redhat?
Randy
Randy Morgan
CSR
Department of Chemistry and Biochemistry
Brigham Young University
801-422-4100
On 6/10/2016 11:51 AM, Rob Crittenden wrote:
Randy Morgan wrote:
So I have a slightly different question. Redhat Summit
Randy Morgan wrote:
Do you know the vendor name on the booth, or will it be under Redhat?
I'm told there will be an Identity Management kiosk/demo area at the Red
Hat booth.
rob
Randy
Randy Morgan
CSR
Department of Chemistry and Biochemistry
Brigham Young University
801-422-4100
On
On Fri, 10 Jun 2016, pgb205 wrote:
Alexander, here you go.
One thing that came to mind that might the a problem. My Active
directory is adserver.addomain.comwhile IPA is ipax1.ipadomain; there
is no suffix. Not sure if that would matter. Anyway here is the log as
requested.
So here is what we
dan.finkelst...@high5games.com wrote:
And, from the 'ipactl -d --ignore-service-failures restart' we get this:
ipa: DEBUG: stderr=
ipa: DEBUG: wait_for_open_ports: localhost [8080, 8443] timeout 300
ipa: DEBUG: Waiting until the CA is running
ipa: DEBUG: Starting external process
ipa:
Am Freitag, 10. Juni 2016, 18:01:32 CEST schrieb Martin Basti:
> On 10.06.2016 17:33, Günther J. Niederwimmer wrote:
> > Am Freitag, 10. Juni 2016, 15:26:39 CEST schrieb Petr Spacek:
> >> On 10.6.2016 14:21, Günther J. Niederwimmer wrote:
> >>> Hello,
> >>>
> >>> Am Freitag, 10. Juni 2016,
Hello,
can any help me to clear a question for DNSSEC, NSEC3
I have a domain created with bind and DNSSEC and NSEC3 I test this Domain and
other, not my Domain with
http://dnsviz.net/d/esslmaier.at/dnssec/
This site from Verisign tell me, I have all Secure and also the A,
Records
On Fri, 10 Jun 2016, pgb205 wrote:
The trust setup still results in
Shared secret for the trust:: ERROR: CIFS server communication error: code "None",
message "NT_STATUS_IO_TIMEOUT" (both may be "None")
If you want I can provide with logs.
Can you show output of
net ads
On 09.06.2016 22:36, David Zabner wrote:
Occassionally in our system we will see a failure in ipa-client-install script
and the cleanup will leave around the host in ipa.
This means that all future client installs fail because the host already exists.
Is there any way to make sure that
hi everyone
there is a master IPA which in some weird way puts AD users
into its ldap catalog. I say weird cause there is no trust
nor other sync established, there was a trust agreement, one
way type, but now 'trust-find' shows nothing, that trust was
removed.
but still when I create a
On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> hi everyone
>
> there is a master IPA which in some weird way puts AD users into its ldap
> catalog. I say weird cause there is no trust nor other sync established,
> there was a trust agreement, one way type, but now 'trust-find' shows
Hi all,
I agree on it's look like a 32 bit issue.
Trying to reproduce on Fedora 64 bit; no problems
Trying to reproduce on Fedora 23 32 bit (x886):
[root@freeipa ~]# journalctl -l -u
ipa-otpd@0-6397-0.service
-- Logs begin at vr
On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> hi everyone
>
> there is a master IPA which in some weird way puts AD users into its ldap
> catalog. I say weird cause there is no trust nor other sync established,
> there was a trust agreement, one way type, but now 'trust-find' shows
On Fri, 10 Jun 2016, Jakub Hrozek wrote:
On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
hi everyone
there is a master IPA which in some weird way puts AD users into its ldap
catalog. I say weird cause there is no trust nor other sync established,
there was a trust agreement, one way
On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
Hello,
can any help me to clear a question for DNSSEC, NSEC3
I have a domain created with bind and DNSSEC and NSEC3 I test this Domain and
other, not my Domain with
http://dnsviz.net/d/esslmaier.at/dnssec/
This site from Verisign tell me,
On 10.06.2016 10:12, Martin Basti wrote:
On 10.06.2016 09:09, Günther J. Niederwimmer wrote:
Hello,
can any help me to clear a question for DNSSEC, NSEC3
I have a domain created with bind and DNSSEC and NSEC3 I test this
Domain and
other, not my Domain with
On Fri, 2016-06-10 at 11:08 +0200, Sumit Bose wrote:
> On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > hi everyone
> >
> > there is a master IPA which in some weird way puts AD users into
> > its ldap
> > catalog. I say weird cause there is no trust nor other sync
> > established,
>
Hi,
I am trying to setup external DNS for IPA with AD trust.
I have set all records in DNS according doc but in the internal IPA DNS I can
see 3 more DNS records which are not mentioned in doc. They were set
automatically during ipa trust-add commnad I guess:
On Fri, 2016-06-10 at 13:24 +0300, Alexander Bokovoy wrote:
> On Fri, 10 Jun 2016, lejeczek wrote:
> > On Fri, 2016-06-10 at 12:12 +0300, Alexander Bokovoy wrote:
> > > On Fri, 10 Jun 2016, Jakub Hrozek wrote:
> > > > On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > > > > hi everyone
An update: The journalctl command has some really interesting output:
Jun 10 11:16:23 ipa.example.com pkidaemon[25032]: WARNING: Symbolic link
'/var/lib/pki/pki-tomcat/alias' does NOT exist!
Jun 10 11:16:23 ipa.example.com pkidaemon[25032]: INFO: Attempting to create
On Fri, 2016-06-10 at 15:34 +0300, Alexander Bokovoy wrote:
> On Fri, 10 Jun 2016, lejeczek wrote:
> > On Fri, 2016-06-10 at 12:12 +0300, Alexander Bokovoy wrote:
> > > On Fri, 10 Jun 2016, Jakub Hrozek wrote:
> > > > On Fri, Jun 10, 2016 at 09:54:19AM +0100, lejeczek wrote:
> > > > > hi everyone
40 matches
Mail list logo