[Freeipa-users] one step away from having freeipa work with vsphere ldap

2014-12-07 Thread Gianluca Cecchi
Hello, I'm quite near to have users and groups working using ipa 3.3 as in CentOS 7 as this gives ability to do binds against compat tree. This is with the use of schema compatibility The last step I need is getting components of groups so that vSphere con enforce group membership permission over

Re: [Freeipa-users] one step away from having freeipa work with vsphere ldap

2014-12-07 Thread Gianluca Cecchi
On Sun, Dec 7, 2014 at 3:44 PM, Gianluca Cecchi gianluca.cec...@gmail.com wrote: Hello, I'm quite near to have users and groups working using ipa 3.3 as in CentOS 7 as this gives ability to do binds against compat tree. This is with the use of schema compatibility The last step I need

[Freeipa-users] Problem adding group after update IPA from CentOS 6.6 to 7.0

2014-12-08 Thread Gianluca Cecchi
user-add First name: Gianluca Last name: Cecchi User login [gcecchi]: Added user gcecchi User login: gcecchi First name: Gianluca Last name: Cecchi Full name: Gianluca Cecchi Display name: Gianluca Cecchi Initials: GC Home directory: /home

Re: [Freeipa-users] Problem adding group after update IPA from CentOS 6.6 to 7.0

2014-12-08 Thread Gianluca Cecchi
On Mon, Dec 8, 2014 at 3:47 PM, Gianluca Cecchi gianluca.cec...@gmail.com wrote: Hello, I followed the guide here to migrate IPA from CentOS 6.6 to CentOS 7.0: https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide

[Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-08 Thread Gianluca Cecchi
: organizationalPerson objectClass: person gecos: Gianluca Cecchi cn: Gianluca Cecchi uidNumber: 163961 gidNumber: 163961 loginShell: /bin/sh homeDirectory: /home/gcecchi uid: gcecchi # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 Hope that this can help others

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-08 Thread Gianluca Cecchi
OK. I will check requirements to write into The wiki Il 08/dic/2014 18:36 Dmitri Pal d...@redhat.com ha scritto: On 12/08/2014 11:44 AM, Gianluca Cecchi wrote: Hello, I finally was able to configure the integration between what in subject. I have made basic tests and all seems ok

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-08 Thread Gianluca Cecchi
On Mon, Dec 8, 2014 at 7:17 PM, Gianluca Cecchi gianluca.cec...@gmail.com wrote: OK. I will check requirements to write into The wiki When I try to login with my Fedora OpenID account and choose as nickname my real name and press login actually it indefinitely remains on the blank page http

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-08 Thread Gianluca Cecchi
On Tue, Dec 9, 2014 at 12:50 AM, Gianluca Cecchi gianluca.cec...@gmail.com wrote: Tried from both Chrome and Fedora (on my Fedora 20 system) Correct: Tried from both Chrome and Firefox (on my Fedora 20 system) -- Manage your subscription for the Freeipa-users mailing list: https

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-10 Thread Gianluca Cecchi
On Tue, Dec 9, 2014 at 10:50 AM, Martin Kosek mko...@redhat.com wrote: On 12/09/2014 12:50 AM, Gianluca Cecchi wrote: On Mon, Dec 8, 2014 at 7:17 PM, Gianluca Cecchi gianluca.cec...@gmail.com wrote: OK. I will check requirements to write into The wiki Hello, now I was able to login

Re: [Freeipa-users] vSphere 5.1 and FreeIPA 3.3 on CentOS 7 finally works! [How I did it...]

2014-12-11 Thread Gianluca Cecchi
On Thu, Dec 11, 2014 at 10:19 AM, Petr Spacek pspa...@redhat.com wrote: Link to the how-to was added to: http://www.freeipa.org/page/HowTos#Virtualization -- Petr^2 Spacek thanks! Gianluca -- Manage your subscription for the Freeipa-users mailing list:

[Freeipa-users] some problems after migrating from 3.0 to 3.3

2014-12-12 Thread Gianluca Cecchi
Hello, I migrated a CentOS 6.6 system with IPA 3.0 to a CentOS 7.0 system with IPA 3.3. The workflow was the one to create a replica and then decommission the old one (that now is with services stopped) with the commands: on old server: ipa-server-install --uninstall on new server:

Re: [Freeipa-users] some problems after migrating from 3.0 to 3.3

2014-12-12 Thread Gianluca Cecchi
On Fri, Dec 12, 2014 at 3:13 PM, Martin Basti mba...@redhat.com wrote: On 12/12/14 14:57, Gianluca Cecchi wrote: Hello, read inline comments. Hello, I migrated a CentOS 6.6 system with IPA 3.0 to a CentOS 7.0 system with IPA 3.3. The workflow was the one to create a replica

Re: [Freeipa-users] WebUI authentication problems

2015-02-20 Thread Gianluca Cecchi
On Fri, Feb 20, 2015 at 10:53 AM, Petr Vobornik pvobo...@redhat.com wrote: On 02/20/2015 09:44 AM, Martin Kosek wrote: On 02/20/2015 02:00 AM, Dan Mossor wrote: I just installed a new server on Fedora 21 Server, using the rolekit deployment tool. Everything was installed and configured (I

Re: [Freeipa-users] Mount cifs share using kerberos

2015-01-10 Thread Gianluca Cecchi
To get the whole root environment you have to run su - root did you try with it? -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project

Re: [Freeipa-users] solaris 10 ad authentication happening with only one user

2015-03-15 Thread Gianluca Cecchi
Il 15/Mar/2015 11:04 Ben .T.George bentech4...@gmail.com ha scritto: here is the getent passwd: skipped nobody4:x:65534:65534:SunOS 4.x NFS Anonymous Access User:/: b...@infra.com:x:531001104:531001104:ben:/home/infra.com/ben: auth:x:64348:64348:auth auth:/home/auth:/bin/sh

Re: [Freeipa-users] solaris 10 ad authentication happening with only one user

2015-03-16 Thread Gianluca Cecchi
On Mon, Mar 16, 2015 at 6:57 AM, Ben .T.George bentech4...@gmail.com wrote: HI the user Ben is from Ad, how can i assign shell to that user.? Regards, Ben Yes I know. I have not administered it so I have nt experience from a configuration point of view, but I think you have to extend

Re: [Freeipa-users] Problem FreeIPA 4.1.3 for vCenter 5.5u2b SSO

2015-03-06 Thread Gianluca Cecchi
On Fri, Mar 6, 2015 at 2:12 PM, Martin Kosek mko...@redhat.com wrote: Ah, I am not sure what control do they mean. But in general, when, it is always interesting to check the LDAP access logs to see the last failed request and then try the same search with ldapsearch and fix things. Martin

Re: [Freeipa-users] Problem FreeIPA 4.1.3 for vCenter 5.5u2b SSO

2015-03-06 Thread Gianluca Cecchi
On Fri, Mar 6, 2015 at 4:40 PM, Rich Megginson rmegg...@redhat.com wrote: [06/Mar/2015:21:51:15 +0700] conn=30 op=1 RESULT err=0 tag=101 nentries=2 etime=0 notes=P [06/Mar/2015:21:51:15 +0700] conn=30 op=2 UNBIND [06/Mar/2015:21:51:15 +0700] conn=30 op=2 fd=99 closed - U1 vCenter SSO

Re: [Freeipa-users] Problem FreeIPA 4.1.3 for vCenter 5.5u2b SSO

2015-03-06 Thread Gianluca Cecchi
On Fri, Mar 6, 2015 at 6:21 PM, Rich Megginson rmegg...@redhat.com wrote: On 03/06/2015 09:39 AM, Herwono W Wijaya wrote: vCenter SSO works well with Univention LDAP. Then set up a wireshark session to capture traffic between vCenter SSO and Univention LDAP, then do the same with vCenter

Re: [Freeipa-users] Problem FreeIPA 4.1.3 for vCenter 5.5u2b SSO

2015-03-06 Thread Gianluca Cecchi
On Fri, Mar 6, 2015 at 7:06 PM, Rich Megginson rmegg...@redhat.com wrote: And so we can then change the preface that at this moment explicitly contains: Preface The environment used to write this document is based on pure vSphere 5.1, used in trial mode with vCenter server configured as

Re: [Freeipa-users] Adding FreeIPA as a vsphere identity source

2015-03-05 Thread Gianluca Cecchi
On Thu, Mar 5, 2015 at 8:54 AM, Martin Kosek mko...@redhat.com wrote: I am also CCing Gialunca who contributed the HOWTO. I checked it again and tried to apply it on my FreeIPA 4.1.3, my compat group now contain the proper uniqueMember attribute and groupOfUniqueNames objectclass. I am not

Re: [Freeipa-users] Problem FreeIPA 4.1.3 for vCenter 5.5u2b SSO

2015-03-06 Thread Gianluca Cecchi
On Fri, Mar 6, 2015 at 8:34 AM, Martin Kosek mko...@redhat.com wrote: On 03/06/2015 04:38 AM, Herwono W Wijaya wrote: Problems with FreeIPA 4.1.3 for vCenter 5.5u2b SSO, only the admin user can be used and always get an error for other users. You mean admin user from vCenter, not admin

Re: [Freeipa-users] RHEL 5 client?

2015-04-01 Thread Gianluca Cecchi
Il 01/Apr/2015 19:36 Rob Crittenden rcrit...@redhat.com ha scritto: Guertin, David S. wrote: I’ve just set up an IPA domain that is working with our RHEL 6 clients. (The servers are running RHEL 7.) But about half of our Linux servers are running RHEL 5, and I’d like to be able to add