[Freeipa-users] Error while issuing ipa-replica-install

Hi list. I'm setting up a couple of FreeIPA servers and I hit an error while trying to setup the replica. Master is fine AFAICT. I'm running both servers on CentOS 7 and using the latest FreeIPA version: # repoquery -i ipa-server Name: ipa-server Version : 4.4.0 Release :

Re: [Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

To connect Samba to FreeIPA, I did the following: 1. Install IPA Server 2. Configure IPA Server 3. Run ipa-adtrust-install 4. Add shares to config using “net conf” I also ran the SID gen task when doing the ipa-adtrust-install, and even ran it later manually

Re: [Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

I have attempted running the SIDgen task via ipa-adtrust-install. I will also try the link you recommended, will update with results. On 1/13/17, 8:37 AM, "Sumit Bose" wrote:     On Wed, Jan 11, 2017 at 04:00:57PM -0500,

Re: [Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

Upon running the ldapmodify command, I receive an “ldap_bind: No such object (32)” error, any suggesions? On 1/13/17, 8:37 AM, "Sumit Bose" wrote:     On Wed, Jan 11, 2017 at 04:00:57PM -0500, Armaan Esfahani wrote:     >

Re: [Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

what steps did you use to connect samba to ipa? > On Jan 11, 2017, at 1:00 PM, Armaan Esfahani > wrote: > > Hi, I have setup a Samba server to use FreeIPA as a password backend, however > whenever I try to use existing users to login I get >

Re: [Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

On Wed, Jan 11, 2017 at 04:00:57PM -0500, Armaan Esfahani wrote: > Hi, I have setup a Samba server to use FreeIPA as a password backend, however > whenever I try to use existing users to login I get > “NT_STATUS_LOGON_FAILURE”. > > Looking at the sssd_nss log on my ipa server, I get the

[Freeipa-users] ipa topologysuffix-verify "Topology is disconnected"

Hi, After messing around with CERTs on one of the replica's there is a problem with replication. The topology is simple, just two hosts. I am searching for the proper command(s) to make replication functional again. This is what I see right now (replaced actual fqdn's with host1 and host2). On

[Freeipa-users] FreeIPA as Samba Backend, Existing Users Fail

Hi, I have setup a Samba server to use FreeIPA as a password backend, however whenever I try to use existing users to login I get “NT_STATUS_LOGON_FAILURE”. Looking at the sssd_nss log on my ipa server, I get the following error “(Wed Jan 11 15:56:11 2017) [sssd[nss]] [fill_sid] (0x0020):

Re: [Freeipa-users] Replication has stopped and server errors

I am happy to report this appears to be resolved. I found this post: https://www.redhat.com/archives/freeipa-users/2014-February/msg7.html which pointed me to the csn skew issue which was causing all my replication failures. I performed the steps in the post and things look much better so

Re: [Freeipa-users] Not able to replicate user keys across master and client

Hi Free IPA team Let me further clarify the question that is asked by Niraj below. Currently, we have 1 master FreeIPA server and 1 client server. Evaluating your product for production deployment Master and client connectivity is established and when creating the user in the web console, it

Re: [Freeipa-users] Not able to replicate user keys across master and client

On Thu, Jan 12, 2017 at 10:59:04AM +, hirofumi.morik...@accenture.com wrote: > Hi Free IPA team > > Let me further clarify the question that is asked by Niraj below. > > Currently, we have 1 master FreeIPA server and 1 client server. Evaluating > your product for production deployment >