[Freeipa-users] Reports and questions

Hello, I tried to install freeipa with certs management. I did manage after a problem. 1°) The installation was unable to finished on a french localized system. The error at stage [3/15]: configuring certificate server instance was something like java.utils.MissingResourceException can't f

Re: [Freeipa-users] Reports and questions

Le 03/05/2010 17:38, Rob Crittenden a écrit : Marc Schlinger wrote: Hello, I tried to install freeipa with certs management. I did manage after a problem. 1°) The installation was unable to finished on a french localized system. The error at stage [3/15]: configuring certificate server

Re: [Freeipa-users] Reports and questions

specific extensions, but I don't want to add this extensions to all the certs that can be issued. Any hints ? Thanks, Marc Schlinger ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users

Re: [Freeipa-users] Reports and questions

n order to generate, "software" client cert among others things. Marc Schlinger ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users

[Freeipa-users] CLIENT KEY EXPIRED right after an ipa-join

s the krbPasswordExpiration set to the time at wich the client join. Am'I missing a step or is this behaviour not normal? Marc SCHLINGER ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users

[Freeipa-users] Bug in ipa-server-install

icate Authority,O=IPA" -external false -clone false Should't the passwords be quoted ? Thanks for all, Marc Schlinger # Installation output Directory Manager password: Password (confirm): The IPA server requires an administrative user, named 'admin'. This user is a regul

Re: [Freeipa-users] Bug in ipa-server-install

Re, The original IPA commit I build my package from is the f20f4e63083638cecf8a9a8c88e9c4d164b89fcc We have some home made mods so the package name I gave won't be of any help. sorry ___ Freeipa-users mailing list Freeipa-users@redhat.com https://w

[Freeipa-users] Kerberos Password change limitation while behind a NAT

Hello all, I cannot change a expired user password while behind a NAT. The error I get is: kpasswd[6756]: Failed to decrypt password: Incorrect net address I believe this is a kerberos limitation due to the difference between the host ip adress enclosed in the ticket - the host's rfc1918 addre

Re: [Freeipa-users] Kerberos Password change limitation while behind a NAT

Le 30/09/2010 18:30, Simo Sorce a écrit : You can use ldappasswd too, either with GSSAPI auth or eventually even with plaintext auth (require using SSL) in that case though you will neeed to know the user DN. Simo. So if a user logs in when his password is expired, will pam_ldap in the