That's pretty much exactly what I was looking for.
Thanks JR.
--Jason
On Thu, Mar 6, 2014 at 11:23 AM, JR Aquino wrote:
> If you don't find an answer for doing it -minus- a ticket, here is what I
> would suggest.
>
> Create a service user who's only role permissions give them the ability to
>
If you don't find an answer for doing it -minus- a ticket, here is what I would
suggest.
Create a service user who's only role permissions give them the ability to
delete users.
Then perform a getkeytab for the user:
ipa-getkeytab -s ipa.example.com -p @EXAMPLE.COM -k
/path/to/username.keytab