Re: [Freeipa-users] pam_hbac for aix

On Mon, Mar 6, 2017 at 12:20 PM, Jakub Hrozek wrote: > On Mon, Mar 06, 2017 at 10:59:12AM +0100, Iulian Roman wrote: > > Hello, > > > > Does anyone know what is the status with the support for AIX in the > > pam_hbac tool ? I've heard from a RH presentation that it is

Re: [Freeipa-users] slapi_ldap_bind - Error: could not send startTLS request

On 04/03/17 14:47, lejeczek wrote: hi everyone I've seemingly finely working domain, I mean it all seem fine to me, except for: [04/Mar/2017:14:26:47.439218725 +] slapi_ldap_bind - Error: could not send startTLS request: error -1 (Can't contact LDAP server) errno 107 (Transport

Re: [Freeipa-users] pam_hbac for aix

On Mon, Mar 06, 2017 at 10:59:12AM +0100, Iulian Roman wrote: > Hello, > > Does anyone know what is the status with the support for AIX in the > pam_hbac tool ? I've heard from a RH presentation that it is available, > although on the project site it does not seem to be supported yet. > > I

Re: [Freeipa-users] pam_hbac for aix

On Mon, Mar 06, 2017 at 12:36:20PM +0100, Iulian Roman wrote: > On Mon, Mar 6, 2017 at 12:20 PM, Jakub Hrozek wrote: > > > On Mon, Mar 06, 2017 at 10:59:12AM +0100, Iulian Roman wrote: > > > Hello, > > > > > > Does anyone know what is the status with the support for AIX in

Re: [Freeipa-users] slapi_ldap_bind - Error: could not send startTLS request

lejeczek wrote: > hi everyone > I've seemingly finely working domain, I mean it all seem fine to me, > except for: > > [04/Mar/2017:14:26:47.439218725 +] slapi_ldap_bind - Error: could > not send startTLS request: error -1 (Can't contact LDAP server) errno > 107 (Transport endpoint is not

[Freeipa-users] Replication Issues

I've seen similar posts, but in the interest of asking fresh and trying to understand what is going on, I thought I would ask for advice on how best to handle this situation. In the interest of providing some history: I have three (3) FreeIPA servers. Everything is running 4.4.0 now. The

[Freeipa-users] make a new server and migrate old data

Hi: I have freeipa 3.0 server ...and want to make a new server ignore any cert related. eg I clean install a server using default free ipa server cert ..and copy dirsrv data to new. can I just copy /etc/dirsrv scheme..username /passwords and groups ? Also if I copy these to 4.0 server any

[Freeipa-users] Make Gpg replica fail , where cert store I should update new ?

gpg Creating SSL certificate for the Directory Server ipa : ERRORcert validation failed for "CN=central.ABC.com,O= ABC.COM" ((SEC_ERROR_EXPIRED_CERTIFICATE) Peer's Certificate has expired.) preparation of replica failed: cannot connect to '

[Freeipa-users] Padding Scheme used in Fedora Dogtag

Dear All, It is required to identify the padding scheme used by the Fedora dogtag system. Appreciate of someone could shed some light on this requirement. Thanks -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to

Re: [Freeipa-users] Freeipa 4.4 creating users with expiration

On ma, 06 maalis 2017, David Kupka wrote: On Fri, Mar 03, 2017 at 08:44:45PM +0530, Rakesh Rajasekharan wrote: Hello, Am using Freeipa 4.4 version . I would like to create few users only valid for few days or months. So,is there a way to create few users with a preset expiration or auto lock

Re: [Freeipa-users] cannot connect to ldaps during replica install, port 636 not listening

On 03/04/2017 12:51 AM, Chris Herdt wrote: > On Fri, Mar 3, 2017 at 4:22 AM, Tomas Krizek wrote: >> >> On 03/02/2017 06:25 PM, Chris Herdt wrote: >> >> On Thu, Mar 2, 2017 at 10:06 AM, Martin Basti wrote: >>> >>> >>> >>> On 02.03.2017 16:55, Chris Herdt

[Freeipa-users] pam_hbac for aix

Hello, Does anyone know what is the status with the support for AIX in the pam_hbac tool ? I've heard from a RH presentation that it is available, although on the project site it does not seem to be supported yet. I would like to know if there are any plans in that direction , because our