Re: [Freeipa-users] What id my AD domain user password not available

2016-06-14 Thread Alexander Bokovoy
On Tue, 14 Jun 2016, Ben .T.George wrote: HI sorry it was issue with DNS (SRV records was missing) and it's been fixed now. i have created one way forest trust While issuing trust from IPA server, i have used shared key and the process was successful. It will always be successful because IPA

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-27 Thread Alexander Bokovoy
On Fri, 27 May 2016, Ben .T.George wrote: This is what i am getting [image: Inline image 1] [image: Inline image 3] [image: Inline image 4] And that wizand end with nothing. Please anyone share more info regarding this The wizard asks you to enter the name of the domain, forest, or realm for

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-27 Thread Ben .T.George
HI Alex. I Am using windows 2008 R2. when i am giving IPA's DNS name and click next, the trust wizard is not going through. But if i am selecting realm trust , atleast the wizard completes. So which AD version is recommended ? Regards, Ben On Fri, May 27, 2016 at 7:05 AM, Alexander Bokovoy

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-26 Thread Alexander Bokovoy
On Fri, 27 May 2016, Ben .T.George wrote: HI i ran some commands from AD side and the Trust status got changed.Below is the command i used on AD netdom trust /d: /verify Before it was : "waiting for confirmation by remote side" and not it got changed to "Trust type: Active Directory domain"

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-26 Thread Ben .T.George
A with an >> external DNS, but I'm sure there are some instructions out there. >> >> -Mike >> >> -Original Message- >> From: "Ben .T.George" >> Sent: May 23, 2016 2:22 PM >> To: Michael ORourke >> Cc: freeipa-users >>

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-26 Thread Ben .T.George
example.com). I'm not familiar with setting up FreeIPA with an > external DNS, but I'm sure there are some instructions out there. > > -Mike > > -Original Message- > From: "Ben .T.George" > Sent: May 23, 2016 2:22 PM > To: Michael ORourke > Cc: freeipa-us

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-26 Thread Michael ORourke
freeipa-users <freeipa-users@redhat.com> Subject: Re: [Freeipa-users] What id my AD domain user password not available HIin my case i have 2 domainsAD DNS : corp.example.kw.commain DNS ( from appliance) : kw.example.comand all the linux box are pointed to kw.example.com so

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-24 Thread Martin Kosek
On 05/23/2016 03:20 PM, Ben .T.George wrote: > Hi > > Thanks for your reply. > > I saw this before but the thing is i cant able to follow up this one as i am > not > completely getting those steps > > ipa trust-add --type=ad "ad_domain" --trust-secret > > Is asking for key and what i need to

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Ben .T.George
cipate in the > FreeIPA domain into the new DNS zone. > > -Mike > > -Original Message- > From: "Ben .T.George" > Sent: May 23, 2016 10:44 AM > To: Michael ORourke > Cc: freeipa-users > Subject: Re: [Freeipa-users] What id my AD domain user password not

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Michael ORourke
: May 23, 2016 10:44 AM To: Michael ORourke <mrorou...@earthlink.net> Cc: freeipa-users <freeipa-users@redhat.com> Subject: Re: [Freeipa-users] What id my AD domain user password not available HIyea that GIf screen i shared with him. but that doesn't show how to take shared key.In my

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Ben .T.George
ginal Message- > From: "Ben .T.George" > Sent: May 23, 2016 10:07 AM > To: Michael ORourke > Cc: freeipa-users > Subject: Re: [Freeipa-users] What id my AD domain user password not > available > > HI > > He is local only but he is asking so many que

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Michael ORourke
a-users <freeipa-users@redhat.com> Subject: Re: [Freeipa-users] What id my AD domain user password not available HIHe is local only but he is asking so many questions.first of all he is refusing to give domain admin users password .questions he is asking is:Is this trust relationship is two

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Ben .T.George
HI He is local only but he is asking so many questions. first of all he is refusing to give domain admin users password . questions he is asking is: Is this trust relationship is two directional? If, yes why IPA require two directional trust? can we build this trust one directional? can we

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Michael ORourke
A couple of ways to go about this.  If he is local to you, you could explain that you need to establish a trust with his domain and you need his assistance for a few minutes while you type the command to join, then have him type in the password.  You need to assure that the DNS forward/stub zones

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Ben .T.George
Hi Thanks for your reply. I saw this before but the thing is i cant able to follow up this one as i am not completely getting those steps ipa trust-add --type=ad "ad_domain" --trust-secret Is asking for key and what i need to gave ? And the shown gif screens and current AD windows are

Re: [Freeipa-users] What id my AD domain user password not available

2016-05-23 Thread Martin Babinsky
On 05/23/2016 02:42 PM, Ben .T.George wrote: Hi LIst, my Windows domain Admin is not giving domain admin user password. in this case how can i proceed ipa trust-add regards, Ben Hi Ben, You can ask your AD domain admin to create a shared secret for establishing trust. See the