Re: [Freeipa-users] check access log of when a user login integrated system

...@redhat.com: On Wed, 13 Aug 2014, barry...@gmail.com wrote: Hi all: I have a buzilla intgrated with ldap ,,,is it poosible to check when the user login through the access log of ldap free ipa server .. What sentence should it look like ? For example, following will return you date

Re: [Freeipa-users] error after change cert

any command make it refresh ? it seem still getiing old godaddy hisotry? 2015-07-06 21:45 GMT+08:00 barry...@gmail.com: Do u meant this : i already add the cert to nss and even \etc\ipa\ ca.cert repalced [root@(LIVE) slapd-Wwww-COM]$ certutil -d /etc/pki/nssdb -L Certificate Nickname

Re: [Freeipa-users] can live turn off nsslapd-security: to off ?

16:15 GMT+08:00 Martin Basti <mba...@redhat.com>: > > > On 28.04.2016 08:00, Barry wrote: > > NOT work tried ..cannot bind the command 389 or 636 ,,,but telnet work > > EOFnsslapd-security: offreplace: nsslapd-securitychangetype: modifydn: > cn=configldapmodify -h ms

Re: [Freeipa-users] can live turn off nsslapd-security: to off ?

19:29 GMT+08:00 <barry...@gmail.com>: > thx let me try as i dont want stop dirsrv but live disable nsslapd > security. > 2016年4月27日 下午7:26 於 "David Kupka" <dku...@redhat.com> 寫道： > >> On 27/04/16 13:15, barry...@gmail.com wrote: >> >>> Do u

Re: [Freeipa-users] Ipa replica cannot gen as cert expire which folder I should replace new cert???

Hi: Which location i should renew cert? Http/alias Etc/dirsrv/slapd* Enough? 2016年5月24日 下午10:01 於 "Rob Crittenden" <rcrit...@redhat.com> 寫道： > barry...@gmail.com wrote: > >> hi all: >> >> >> Thx ad title >> >> ipa : ERROR

[Freeipa-users] Error Server update not syn to Server02 but reverse ok

Hi all: Orginal config server <> server02 , either server can add user and syn Now server < server02 ,GSSAPI show as below ..ANY idea? THX [05/May/2016:17:29:03 +0800] - 389-Directory/1.2.11.25 B2013.325.1951 starting up [05/May/2016:17:29:03 +0800] - WARNING: userRoot: entry cache size

Re: [Freeipa-users] Restore form backup , start servrer will error but sucess

there is something wrong > in the > > code, let me check first > > How did you run the backup and restore? AFAIK it was introduced in > FreeIPA 3.2, then it was introduced in ipa 3.3 release on RHEL 7. It is > not on RHEL 6. > > > > > > > On 10.05.2016 13:34, Barry wro

Re: [Freeipa-users] Restore form backup , start servrer will error but sucess

Ipa 3.0 e47 Centos 6.5 . Just update python? 2016年5月10日 下午6:58 於 "Martin Basti" <mba...@redhat.com> 寫道： > > > On 10.05.2016 12:41, barry...@gmail.com wrote: > > Hi: > > Restore form backup follow the procedure below: > http://www.freeipa.org/page/V3/Ba

Re: [Freeipa-users] server 1 and server 2 cannot replicate now may be ssl cert expire

Hello Barry, Can you provide more info? What is your IPA version, OS? CENTOS 6.5 server1 - ipa-server-3.0.0-47.el6.centos.2.x86_64 server 2 - ipa-server-3.0.0-37.el6.x86_64 What are the symptoms you are experiencing? server1 's update not transfer to server 2 but server 2 can

[Freeipa-users] How to reisnatll the ca or the dogtag system

Hi: Errors occur ...cert ni problem ..seem ca error and cannot tract cert. thx ipa-replica-prepare c03.abc.com --ip-address 192.168.1.73 Directory Manager (existing master) password: preparation of replica failed: cannot connect to u'ldapi://%2fvar%2frun%2fslapd-WISERS-COM.socket': LDAP Server

Re: [Freeipa-users] Make Gpg replica fail , where cert store I should update new ?

. See [1] > > If it doesn't, you can start by identifying which certificate expired with > $ sudo getcert list | egrep -e 'expires|Request ID|subject' > > HTH, > Flo > > [1] https://pagure.io/freeipa/issue/6375 > > On 03/07/2017 04:14 AM, barry...@gmail.com wrote: > &g