Yes it works if I specify the -s as ldap.mycorp.com. So we have progress!
It now appears to authenticate fine when it posts the session but I have a
new error.
I get an Ipa Error 911 Missing HTTP referer. br/ You have to configure
your browser to send HTTP referer header. I assume this is because
On Mon, 03 Feb 2014, Steve Severance wrote:
Yes it works if I specify the -s as ldap.mycorp.com. So we have progress!
It now appears to authenticate fine when it posts the session but I have a
new error.
I get an Ipa Error 911 Missing HTTP referer. br/ You have to configure
your browser to send
So I understand the mitigation of CSRF attacks. I would like ipa to be able
to handle a specific set of referers. My use case may be less common since
my freeipa instance is handling our server infrastructure not desktops.
I have everything working now. Here is an example nginx server config in
Hi Dmitri,
I am using Free Ipa 3.1.5 on Fedora 18. The design basically looks like the
following. All of this is hosted at AWS in our VPC. The nginx
box is on a web addressable subnet while the FreeIPA box is on a private
subnet that is not internet accessible. My goal is to be able to use the
On Tue, Jan 28, 2014 at 02:29:07PM -0800, Steve Severance wrote:
Hi Everyone,
I have deployed freeipa inside our production network. I want to be able to
access the web ui so I am attempting to add it to our nginx edge machine. I
can pass the requests upstream just fine but I am unable to
On 01/28/2014 05:29 PM, Steve Severance wrote:
Hi Everyone,
I have deployed freeipa inside our production network. I want to be
able to access the web ui so I am attempting to add it to our nginx
edge machine. I can pass the requests upstream just fine but I am
unable to login using a
