Now all is ok :)
# ipa trust-add --type=ad mydomain.com --admin Administrator --password
Active Directory domain administrator's password:
---
Added Active Directory trust for realm "mydomain.com"
Sorry, I've read ipv6.disable=1 in this article
http://www.freeipa.org/page/Active_Directory_trust_setup#Prerequisites, I
understood wrong this prerequisite and went directly to the next chapter,
in my mind I was conviced that IPv6 must be disabled :)
I will try with IPv6 enabled, and then I will
On Wed, 09 Sep 2015, Morgan Marodin wrote:
Hi Alexander.
Ok, after enabling debugging I have these logs:
---
==> /var/log/httpd/error_log <==
INFO: Current debug levels:
all: 100
tdb: 100
printdrivers: 100
lanman: 100
smb: 100
Hi Alexander
IPv6 stack is disabled on my RHEL like distro, v 7 x64, but is enable on my
WIndows 2012.
I have read in a freeipa article to disable IPv6.
I've 2 Domain Controller with Windows Server 2012 and (at this time) one
new freeipa server, just installed, in the same network.
AD REALM is
On Wed, 09 Sep 2015, Morgan Marodin wrote:
Hi Alexander
IPv6 stack is disabled on my RHEL like distro, v 7 x64, but is enable on my
WIndows 2012.
I have read in a freeipa article to disable IPv6.
Sorry, and why you did decide to disable IPv6 stack? FreeIPA article
explicitly talks about not
Hi everyone.
I've a problem with my new freeipa installation,
v4.1.0, over RHEL 7 like distribution.
The installation was ok, but now
I've some problems operating via CLI:
# ipa user-show admin
ipa: ERROR:
cert validation failed for
"CN=srv01.ipa.mydomain.com,O=IPA.MYDOMAIN.COM"
I don't see any 135 TCP listening port, doing tcpdump I see that it tryes
to do a connection in its 135 port.
What am I missing?
Thanks, Morgan
> Subject: [Freeipa-users] freeipa cert validation failed,
> SEC_ERROR_UNTRUSTED_ISSUER Date: Tue, 08 Sep 2015 11:00:
On Tue, 08 Sep 2015, Morgan Marodin wrote:
I've solved this error, reading this forum:
https://www.redhat.com/archives/freeipa-users/2015-July/msg00247.html
But now when I try to trust to my Active Directory I see these errors:
# ipa trust-add --type=ad mydomain.com --admin
Also doing trust manually (as explained here
http://www.freeipa.org/page/Active_Directory_trust_setup) the command fail
in the same mode:
# ipa trust-add --type=ad MYDOMAIN.COM --trust-secret
Shared secret for the trust:
ipa: ERROR: Cannot find specified domain or server name
==>
On Tue, 08 Sep 2015, Morgan Marodin wrote:
Also doing trust manually (as explained here
http://www.freeipa.org/page/Active_Directory_trust_setup) the command fail
in the same mode:
# ipa trust-add --type=ad MYDOMAIN.COM --trust-secret
Shared secret for the trust:
ipa: ERROR: Cannot find
Hi Alexander, thanks for your support.
These are my open ports after running sssd:
# netstat -nltup | grep smbd
tcp0 0 0.0.0.0:139 0.0.0.0:*
LISTEN 3149/smbd
tcp0 0 0.0.0.0:445 0.0.0.0:*
LISTEN 3149/smbd
After running SSD error doing
11 matches
Mail list logo
