3e>>
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
Date: Fri, 17 Jun 2016 05:02:59 -0700
On Thu, 16 Jun 2016, David Fischer wrote:
Alexander,
Ok I figured most of my issues were ldap search time out and also
ldap_idmap_range_size was to small.
Goo
3cfreeipa-us...@redhat.com%3e>>
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
Date: Tue, 14 Jun 2016 23:52:36 -0700
On Tue, 14 Jun 2016, David Fischer wrote:
Alexander,
I am getting the windows admin to refresh our DR AD setup and I should
be able to give y
Cc: freeipa-users@redhat.com
mailto:%22freeipa-us...@redhat.com%22%20%3cfreeipa-us...@redhat.com%3e>>
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
Date: Tue, 14 Jun 2016 23:52:36 -0700
On Tue, 14 Jun 2016, David Fischer wrote:
Alexander,
I am g
On Tue, 14 Jun 2016, David Fischer wrote:
Alexander,
I am getting the windows admin to refresh our DR AD setup and I should
be able to give you an idea on some of our groups layouts.
So a quick understanding is that a single user can have 15-20+ groups
those groups might have all users in them
eployments/
-Original Message-
From: Alexander Bokovoy [mailto:aboko...@redhat.com]
Sent: Tuesday, June 14, 2016 1:03 PM
To: David Fischer
Cc: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
On Tue, 14 Jun 2016, David Fis
On Tue, 14 Jun 2016, David Fischer wrote:
Alexander,
One of the things I am seeing is that our AD has groups that are 5 deep
and IPA is not able to enumerate all the groups Is there away to help
IPA in search depth or scope?
SSSD should be able to handle that. If not, show the logs that
demonst
:07 PM
To: David Fischer
Cc: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
On Mon, 13 Jun 2016, David Fischer wrote:
>(Note: versions below)
>
>All,
>I am getting password failures for accounts coming from a sub-a
t;>
Subject: Re: [Freeipa-users] IPA - Password time outs / failures on trusted AD
Users
Date: Mon, 13 Jun 2016 12:07:29 -0700
On Mon, 13 Jun 2016, David Fischer wrote:
(Note: versions below)
All,
I am getting password failures for accounts coming from a sub-ad domain.
I originally was not
On Mon, 13 Jun 2016, David Fischer wrote:
(Note: versions below)
All,
I am getting password failures for accounts coming from a sub-ad domain.
I originally was not able to do 'getent' lookups of random users or groups and
found that it was timing out during ldap scan. I upped the timeout on the