:
ipa_user_script=/path/to/script
then during add/delete/modify of an user, it will be called with
add/del/mod as first parameter and user's dn as second. Result of
the call is ignored but return from IPA server is blocked by the
execution so be quick in ipa_user_script!
--
/ Alexander Bokovoy
diff --git
sophisticated
mechanism in many ways, maybe we should discuss on freeipa-devel
Sure. I only wanted to show how large is amount of work to hook
something in. You can treat my POC as means to provoke discussion. :)
--
/ Alexander Bokovoy
___
Freeipa-users mailing
, late friday and I have a horrible headache,
so if it doesn't I apologize in advance. :)
Friday night is a nice time to talk about serious stuff :)
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
be nice, indeed. Could you please raise a bug for Fedora
installer to improve 'FreeIPA authentication' settings page? And add
me to the CC: list.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
of things to discover.
Though I would get discovery part of the ipa-client-install reused
here -- like finding out kerberos setup via DNS and if that fails,
show UI to enter all additional details, then schedule
actual enrollment.
--
/ Alexander Bokovoy
.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
it. I'm not sure it will be possible to use it in %post for upgrades
but at least running it after yum upgrade would be possible.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa
to set up and start
CA.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
it into Fedora?
I'll add symlinks update into freeipa F15-F16 upgrade script. At
worst, if 728598 will be fixed in Fedora as well, that part of the
code will do nothing.
Tickets 2103 and 2117 in upstream FreeIPA are for tracking that.
--
/ Alexander Bokovoy
/client major versions.
Check /var/log/ipaclient-install.log for details.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
On Fri, 25 Nov 2011, Craig T wrote:
Hi Alexander,
I took Steven Jones's advice and updated the IPA client to
ipa-client-2.1.1-4.el6.x86_64 and the client started working
perfectly!
Ok, great!
--
/ Alexander Bokovoy
___
Freeipa-users mailing
of
logging before initialization by one of components. That was fixed a
while ago but if you are saying we missed it in 2.1.4 build for
F15/F16, please file a bug and we'll work on backporting that change.
--
/ Alexander Bokovoy
___
Freeipa-users
hope that our effort preventing possible remote attacks on
core piece of enterprise infrastructure will be helpful when you'll go
live with your installation.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
fileserver1 to
freeipa-server-2.1.4-2.fc16.x86_64. I'm a little concerned about the
slapd-PKI-IPA replication now, since I haven't been able to replicate
that properly.
Did you install Fedora 16 from scratch or was it upgrade from Fedora
15? The latter might explain some of these issues.
--
/ Alexander
, workarounds are kludgy and require modification deep in
Dogtag templates.
Backstory for nss part is here
https://bugzilla.redhat.com/show_bug.cgi?id=737506
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
On Thu, 05 Jan 2012, Alexander Bokovoy wrote:
On Wed, 04 Jan 2012, Alexander Bokovoy wrote:
On Wed, 04 Jan 2012, Rich Megginson wrote:
Your system may be partly configured.
Run /usr/sbin/ipa-server-install --uninstall to clean up.
[root@fileserver4 ~]#
I'm running 389-ds-base
complete my setup.
Is this an error in the policy?
https://bugzilla.redhat.com/show_bug.cgi?id=739708
Allowing connecting to ephemeral port is something that Ade still not
decided on yet.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
?
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Sun, 12 Feb 2012, Marco Pizzoli wrote:
On Sun, Feb 12, 2012 at 5:41 PM, Alexander Bokovoy aboko...@redhat.comwrote:
On Sun, 12 Feb 2012, Marco Pizzoli wrote:
I'm having the same issue with another freeipa setup which was installed
directly from the updates-testing repository.
He
/ would contain 389-ds instances' data stores.
Thanks in advance.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
this time out
configurable in /etc/ipa/default.conf? This is something that we can't
predict in all cases so this would be per-system setting.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
number of shares. Something better
needs to be created.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
information leak in certain circumstances.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
. Any suggestions?
Please try with permissive mode and clear VM.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Sat, 10 Mar 2012, Stephen Ingram wrote:
On Sat, Mar 10, 2012 at 10:49 PM, Alexander Bokovoy aboko...@redhat.com
wrote:
On Sat, 10 Mar 2012, Stephen Ingram wrote:
I'm testing the new FreeIPA 2.1.90 rc1 on a fresh Fedora 17 alpha this
weekend. I started by installing the freeipa-server
will have a bit different schema (supported by native IPA passdb
module for Samba) but the state as it is at least should work as a stop
gap for file server cases.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
(by making a container in sysaccounts to
include all 'AD agents' from IPA servers exposed via CIFS and limiting
what they can do).
A downside is that you don't see these system accounts through IPA UI/CLI,
they are only managed manually.
--
/ Alexander Bokovoy
looks promising, I will certainly try the example
provided. Would user_add be the suitable command to use? It's the obvious
candidate, but I just want to make sure...
Yes, user_add is the command.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
, this is the version from December. Is there any newer version?
There is no newer version. I was planning to go over and add more
content in the schema extension area once we get 3.0beta1 out.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users
at 2b077f7b0d68a758ae15a73eeef74591bac84360, I believe it
is fixed already.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Fri, 29 Jun 2012, Joe Linoff wrote:
Hi Alexander:
Thank you. I appreciate the feedback. Is it safe to upgrade to 2.2 on a
CentOS 6.2 system? I used 2.1.3 because it was in the rpm distribution.
I haven't used CentOS 6.2 so I cannot suggest anything on this front.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Fri, 29 Jun 2012, Petr Viktorin wrote:
On 06/29/2012 03:04 PM, Alexander Bokovoy wrote:
On Thu, 28 Jun 2012, sysad...@noboost.org wrote:
Hi All,
Is there a weird restriction to UID 999 in ipa, as IPA keeps changing
the UID when I add a user with that number? (I've already checked the
UID
to remove the file and its reference from
/etc/sysconfig/httpd and restart the service.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
creating a non-updating stand-alone copy
of my production servers.
Is there a way to force a one-way replication?
(I'd also be grateful for any mentions of less painful ways of
connecting samba to freeipa :))
For IPA v2.x the link above explains fairly easy setup.
--
/ Alexander Bokovoy
On Thu, 16 Aug 2012, Dimitris Tsompanidis wrote:
On 16/08/2012 14:34, Alexander Bokovoy wrote:
On Thu, 16 Aug 2012, Dimitris Tsompanidis wrote:
Hi all,
I'm looking into setting up a Samba file server with FreeIPA as
the password backend. I don't need fancy stuff, just plain LDAP
password
is the same).
--
/ Alexander Bokovoy
- Original Message -
From: george he george_...@yahoo.com
To: John Dennis jden...@redhat.com, a...@redhat.com
Cc: freeipa-users@redhat.com
Sent: Wednesday, September 5, 2012 9:40:10 PM
Subject: Re: [Freeipa-users] ipa host-del
Thanks a lot. It's
@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
--
/ Alexander Bokovoy
/agent/ca/profileReview?requestId=7
ipa.nix.be:9443' returned non-zero exit status 6
https://bugzilla.redhat.com/show_bug.cgi?id=859043
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
need to apply
greater security protection to the KDC which runs on the same FreeIPA
host.
http://freeipa.org/page/Apache_SNI_With_Kerberos
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman
the name instead? Should
I open an RFE?
Since resolving SID means contacting AD's global catalog, there might be
delays and even failure. I'll see how we can do it in a safe way.
Please add an RFE.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
to be able to map these ephemeral users to
some existing objects first to allow them to bind to LDAP. We haven't
done that yet but may at some point in future consider adding sort of
ephemeral bind support. It is unclear how to do it properly, considering
all security implications.
--
/ Alexander Bokovoy
...
It is moved to HOWTOs:
http://www.freeipa.org/page/Howto/IPAv3_AD_trust_setup#Add_trust_with_AD_domain
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Fri, 11 Jan 2013, Petr Spacek wrote:
On 11.1.2013 10:19, Alexander Bokovoy wrote:
On Fri, 11 Jan 2013, David Juran wrote:
On fre, 2013-01-04 at 19:04 +0100, Ana Krivokapic wrote:
On 01/03/2013 12:28 PM, Petr Spacek wrote:
On 12/21/2012 01:19 PM, Sumit Bose wrote:
On Fri, Dec 21, 2012
as
required by Windows. You could get around of the issue by manually
mapping appropriate Kerberos identities to local Windows users on each
machine.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
-forest trusts yet.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
reboot now but this one is not authorized by the IPA server for this
user on this server. = Is this possible ?
'sudo reboot now', that's possible.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
of thinking out and
writing down feature proposal, based on a template at
http://www.freeipa.org/page/Feature_template
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
attributeLevelRights: *:21
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
get there
we need to finish a foundational work, including some changes in Samba
I'm currently working on and changes for SSSD.
You can see progress with the ticket above and others mentioned in it.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
in KDC. SSSD is also going to fetch the list like it
fetches now list of trusted domains and configures them for clients.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
.
If LDAP_OPT_X_SASL_NOCANON is not set explicitly, it is never set by
libldap itself.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
was not inhibited.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
service accounts (include host/fqdn@REALM) since roles
cannot be applied to them, if I remember correctly. We would need to
make an exclusive ACI that allows all services to gain read only access...
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
-utils might have been installed for mounting CIFS
shares.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
with
ipa-client-install since that would have turned GSSAPIAuthentication to
'yes'. Or you did change sshd_config by yourself to non-working state.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
different types of OpenSSH versions and a bit of
configuration mess.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
and Peter Spacek can tell more but in short, Bind 10 module
is on our radar.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
.
(2) is not possible right now due to the fact that Samba AD DC does not
support cross-forest trusts right now. There is certain amount of work
to be done to implement needed logic in Samba.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa
which brings change in KDC driver ABI. As
result, you will need to restart KDC after upgrade.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
how to work with 'net conf setparm'.
For 'valid users' I guess you can use simply user names since these
would be our local ones.
Again, this is completely untested right now.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users
On Tue, 30 Apr 2013, Alexander Bokovoy wrote:
On Tue, 30 Apr 2013, simon.willi...@thehelpfulcat.com wrote:
That is actually pretty good news. The real requirement is network
storage for the Windows workstations secured by FreeIPA authentication.
If I read what you’ve said correctly
On Tue, 30 Apr 2013, Alexander Bokovoy wrote:
On Tue, 30 Apr 2013, Alexander Bokovoy wrote:
On Tue, 30 Apr 2013, simon.willi...@thehelpfulcat.com wrote:
That is actually pretty good news. The real requirement is network
storage for the Windows workstations secured by FreeIPA authentication
On Tue, 30 Apr 2013, Simo Sorce wrote:
On Tue, 2013-04-30 at 22:37 +0300, Alexander Bokovoy wrote:
We need to add some smart logic to ipasam module to handle it.
The logic for trusted users needs to go into winbindd or sssd, ipasam is
only about our own domain.
In SSSD 1.10 there is new SID
Directory.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
connection = ldap.initialize('ldap://{host}'.format(host='foo.fandingo.org'))
auth = ldap.sasl.gssapi()
connection.sasl_interactive_bind_s('', auth)
ldif = .
dn = .
connection.add_s(dn, ldif)
==
--
/ Alexander Bokovoy
___
Freeipa-users mailing
-master setup with two servers. I tried to add both servers to the
ldap uri and to the krb5 section byt the service refused to start.
See man sssd-ldap(5). ldap_uri accepts comma-separated list of servers.
Same for krb5_server, see sssd-krb5(5).
--
/ Alexander Bokovoy
lacks
AES encryption and making it working with weaker encryption for TGT was to
force downgrading encryption on IPA side, aside from unclear issues with RPC
calls.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
On Wed, 19 Jun 2013, Dmitri Pal wrote:
On 06/19/2013 12:35 PM, Alexander Bokovoy wrote:
On Wed, 19 Jun 2013, Aly Khimji wrote:
So as others have mentioned windows obviously isn't my area of focus
here
either, however we have this working with 2003r2, but I do notice odd
behaviour with id
/Freeipa30_SSSD_SUDO_Integration.pdf
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Mon, 24 Jun 2013, Dean Hunter wrote:
On Mon, 2013-06-24 at 09:07 +0300, Alexander Bokovoy wrote:
On Sun, 23 Jun 2013, Dean Hunter wrote:
Section 14.4. Applying the Configured sudo Policies to Hosts of the
FreeIPA Guide, Edition 3.1.5 in the Fedora 18 documentation contains
only an example
not allow to redefine krb5.conf.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
DC right now.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
is not enrolled to IPA realm, you can easily make it
working against AD domain. If you enrolled the host to IPA realm which
is exactly same as AD domain, both DNS and krb5.conf collisions will be
creating quite serious issues. Basically, it is 'either - either' case.
--
/ Alexander Bokovoy
: debian/rules binary a produit une erreur de sortie
de type 2
Any idea or me advice about how to backport freeipa-client to wheezy ?
Perhaps, you can fix it in a manner similar to
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=628827
--
/ Alexander Bokovoy
users but on the AD I can't use IPA users. Any idea why
this is happening?
Because we haven't yet implemented the other direction.
We are planning to work on it for Fedora 20 time frame.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa
into the
user_show part and that works, now westill need the user_add (and so on).
Has anyone some sort of sample/howto for this ?
As I said on IRC, I'm working on the article which explains all that.
Stay tuned.
--
/ Alexander Bokovoy
___
Freeipa
Hope it helps. I've tested the scenario on Fedora 19.
Thanks!
Cheers,
Matt
2013/7/29 Alexander Bokovoy aboko...@redhat.com
Hi Matt,
On Mon, 29 Jul 2013, Matt . wrote:
Hi all,
Refering to this topic:
https://www.redhat.com/**archives/freeipa-users/2013-**July/msg00318.htmlhttps
Kerberos to the server when talking.
When all four are in place, it should work with whatever language you
have used to write your web application.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com
/29/2013 03:02 PM, Alexander Bokovoy wrote:
Hi!
On Mon, 29 Jul 2013, Matt . wrote:
Hi Alexander,
That is great!
I hope that someone can find this topic and use it as reference
as it
tool
us some time to find the other one :)
You can find my
/conf/ipa.keytab:
(echo rkt /tmp/external.keytab; echo wkt /etc/httpd/conf/ipa.keytab) |ktutil
Then restart httpd -- I'm not sure mod_auth_kerb re-reads the keytab on
its change.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users
is the OTP one. I
wonder if we do too much during bind when OTP is not enabled (by default).
This should be unrelated to OTP work as John is using CentOS with older
FreeIPA build, equivalent to what is in RHEL 6.4.
--
/ Alexander Bokovoy
___
Freeipa
0.48 is in Fedora 19 at this point) but filing a bug against RHEL 6.3
would help in promoting the fix to stable packages.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
in combination with
slapi-nis identity source, for example.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
directory.
Is there any SELinux AVC in the logs? Is /home/net an NFS mount? Does
use_nfs_home_dirs SELinux boolean set to on? (getsebool -a|grep home)
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman
on
IPA side.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
to IPA, not the other way around. A
change in IPA for the account which was synchronized from AD will be
propagated back to AD but IPA users will not be copied to AD.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https
?
No, it is not possible.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
the currently logged in user, but I suspect that is simply because
Windows takes the logged in user SID from the PAC and it doesn't really
talk to samba4.
Yep, only that it doesn't know where to talk as there is no proper
service available.
--
/ Alexander Bokovoy
On Fri, 20 Sep 2013, Dmitri Pal wrote:
On 09/20/2013 11:01 AM, Alexander Bokovoy wrote:
On Fri, 20 Sep 2013, Loris Santamaria wrote:
Hi all,
yesterday I was going to try puppet on windows, so I fired up a Windows
7 VM, and just for curiosity, instead of joining it to the AD realm, i
decided
-forest
trusts and therefore will work with FreeIPA out of the box.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
to play
firewall and other games with convincing them being off path.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
domain is
actually NT4 style too, that might work. The latter is a bit handwavy
due to the way discovery is done in winbindd which might decide Kerberos
is preferred by the trusting party...
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa
user ?
Under winsync AD users would become 'normal' LDAP objects in IPA,
therefore you can assign additional values/attributes to them.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo
service is available, it is published (via avahi, for example). If
service is not running, it is not published.
--
/ Alexander Bokovoy
___
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users
On Wed, 25 Sep 2013, Martin Kosek wrote:
On 09/24/2013 04:40 PM, Alexander Bokovoy wrote:
On Tue, 24 Sep 2013, Alexandre Ellert wrote:
Hi,
I've successfully setup a testing environment with an IPA server (RHEL 6.4)
and a cross realm trust with my Active Directory (Win2008 R2).
Authentication
On Wed, 25 Sep 2013, Sumit Bose wrote:
On Wed, Sep 25, 2013 at 10:17:04AM +0200, Martin Kosek wrote:
On 09/24/2013 04:40 PM, Alexander Bokovoy wrote:
On Tue, 24 Sep 2013, Alexandre Ellert wrote:
Hi,
I've successfully setup a testing environment with an IPA server (RHEL 6.4)
and a cross
1 - 100 of 1063 matches
Mail list logo