Awesome, it worked!
Just one final question: how to make that script search not only in
ipa1.example.com's LDAP database, but also in ipa2.example.com's LDAP in
case ipa1 is inaccessible? It's vital for a production environment!
I tried copying the whole section of code from ldapsearch ...
On Fri, 24 Oct 2014, Orkhan Gasimov wrote:
Awesome, it worked!
Just one final question: how to make that script search not only in
ipa1.example.com's LDAP database, but also in ipa2.example.com's LDAP
in case ipa1 is inaccessible? It's vital for a production environment!
There are two things
Thanks, this option worked in that script!
24-Oct-14 12:43, Alexander Bokovoy пишет:
You can specify multiple servers yourself too as
-H ldap://ipa1.example.com ldap://ipa2.example.com
ldap://ipa3.example.com;
--
Manage your subscription for the Freeipa-users mailing list:
I already deployed FreeIPA 4.1 on Fedora 21 server alpha-release.
Everything is good as far as FreeIPA server operation is concerned.
23-Oct-14 01:06, William Graboyes пишет:
3) am I insane for wanting to introduce FC21 into my environment?
--
Manage your subscription for the Freeipa-users
Yet with FreeIPA v4 we've got another thing to keep in mind regarding
FreeBSD - FreeIPA integration: the cron script proposed at FreeBSD
forums won't work.
Here's what was said in the post:
The tricky part was gettingsudoto work with host groups. FreeIPA keeps
host groups in netgroups, and
And another interesting behaviour.
Say a user netuser is a member of a user group netstaff,
and a host bsd.example.com is a member of a host group nethosts.
We then create an HBAC rule netstaff_to_nethosts:
Who: User Groups - netstaff -- Accessing: Host Groups - nethosts --
Via Service:
Alright then, thanks for info!
Tomorrow is the deadline for my researches on FreeIPA.
Then I have to start deploying a centralized management solution in our
production environment.
Please help me to make a final decision on which version of FreeIPA to choose -
3.3 or 4.1?
I'd like to have all
On Thu, 23 Oct 2014, Орхан Касумов wrote:
Alright then, thanks for info!
Tomorrow is the deadline for my researches on FreeIPA.
Then I have to start deploying a centralized management solution in our
production environment.
Please help me to make a final decision on which version of FreeIPA to
Very interesting!
You're right, I used simple ldapsearch -x command on the client when
browsing the LDAP database. With IPA 3.3 it returned a whole lot of info about
hostgroups, but with IPA 4.1 - only a single string 'cn=ng,cn=compat,$SUFFIX'.
That's why current script didn't work.
Tomorrow
