OOps, forgot to reply to list last time.
On 06/19/2012 10:42 AM, Simo Sorce wrote:
On Tue, 2012-06-19 at 09:14 -0400, Brian Wheeler wrote:
I will look into that. I've got nearly a year before I have to do my
machine migrations, so one would assume that this feature would
stabilize by the time
> Well, at the moment we only set up a two way trust
> but the windows admins would certainly be able to delete the outgoing
> trust right after it is created, it should cause trouble for win users
> that want to access ipa hosts.
>
> We may take an RFE about creating only a one way trust, but it w
On Tue, 2012-06-19 at 09:14 -0400, Brian Wheeler wrote:
> I will look into that. I've got nearly a year before I have to do my
> machine migrations, so one would assume that this feature would
> stabilize by the time I get around to doing an actual implementation.
> I'll play with it and see i
On Tue, 2012-06-19 at 13:26 +0100, James Hogarth wrote:
> > I wonder if the (very) new IPA AD trust feature could solve at least
> > some of your problems. Have a look at
> > http://freeipa.org/page/IPAv3_testing_AD_trust for some info on how this
> > can be tested.
> >
>
> The initial documentati
On tis, 2012-06-19 at 13:26 +0100, James Hogarth wrote:
> > I wonder if the (very) new IPA AD trust feature could solve at least
> > some of your problems. Have a look at
> > http://freeipa.org/page/IPAv3_testing_AD_trust for some info on how this
> > can be tested.
> >
>
> The initial documentati
I will look into that. I've got nearly a year before I have to do my
machine migrations, so one would assume that this feature would
stabilize by the time I get around to doing an actual implementation.
I'll play with it and see if I can make it work. Although, the
instructions do mention val
> I wonder if the (very) new IPA AD trust feature could solve at least
> some of your problems. Have a look at
> http://freeipa.org/page/IPAv3_testing_AD_trust for some info on how this
> can be tested.
>
The initial documentation looks like it's describing a full two way
trust - in principal woul
On mån, 2012-06-18 at 10:49 -0400, Brian Wheeler wrote:
> Is there any way to integrate FreeIPA into an environment such as ours
> or am I going to have to continue with my homegrown way of doing things?
I wonder if the (very) new IPA AD trust feature could solve at least
some of your problems.
On 06/18/2012 08:49 AM, Brian Wheeler wrote:
Hello
I'm a sysadmin at a smallish department at my university. We're
investigating FreeIPA to replace our homegrown openldap/perl script
user management stuff. The difficulty we're facing is that university
has standardized on Active Directory a