Hi,
Do I need network access to ports from the ipa-client to the server-
windows for authentication with windomain accounts?
ipa-server fedora19
ipa-client fedora19
winserver win2012
the ipa-client is located in another network
within the network ipa-server, ipa-client and windows-server
Hello.
freeipa-server-3.3fedora19
ipa-replica1-fedora19
ipa-replica2 ferdora19
ssh auth with windows accounts on ipa-replica1-fedora19 is OK
ssh auth with windows accounts on ipa-replica1-fedora19 is acces denied
id winuser@windomain OK
var/log/secure
selinux disabled
firewaldd
[sssd]
services = nss, pam, ssh
config_file_version = 2
debug_level = 5
domains = ipa.sys.local
2013/9/24 Sumit Bose sb...@redhat.com
On Tue, Sep 24, 2013 at 01:39:28PM +0400, Михаил А wrote:
Hello.
freeipa-server-3.3fedora19
ipa-replica1-fedora19
ipa-replica2 ferdora19
ssh auth
Good afternoon. In each region, I have a couple of controllers (windows and
ipa). With the authorization server in the logs ipa (sssd log) I find that
the request is not for the neighbor by location windows server, and
randomly throughout the forest. Tell me is there a way to explicitly
specify
-- Forwarded message --
From: Михаил А avdush...@gmail.com
Date: 2013/10/14
Subject: Re: [Freeipa-users] (no subject)
To: d...@redhat.com
Simplify the circuit. I have a windows server DC, IPA replica server. My
job is to authenticate the user windows to your account on the client
ipa config-mod --defaultshell=/bin/bash
ipa: ERROR: no modifications to be performed
2013/10/14 Martin Kosek mko...@redhat.com
On 10/14/2013 11:46 AM, Mateusz Marzantowicz wrote:
Is there any particular reason why /bin/sh is default shell for new
domain users and not /bin/bash is? I know
https://fedorahosted.org/freeipa/ticket/2008
is there a possibility to do the same for the SRV records windows servers?
2013/10/14 Михаил А avdush...@gmail.com
-- Forwarded message --
From: Михаил А avdush...@gmail.com
Date: 2013/10/14
Subject: Re: [Freeipa-users