Re: [Users] AD authentication for ovirt manager

2013-04-24 Thread Itamar Heim

On 04/23/2013 05:12 PM, Chris Noffsinger wrote:

Also create a different user.  For instance I could not get the
Administrator user to bind with my samba4 DC.  Had to create a different
user to bind to.


that's because the built-in administrator doesn't have a UPN iirc.
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


Re: [Users] AD authentication for ovirt manager

2013-04-23 Thread Charlie
Also set your Active Directory source as your time synchronization
provider.  You need DNS, Directory services, Kerberos and network time
all from the same source if you want anything approaching reliability.

--Charlie

On Mon, Apr 22, 2013 at 6:17 PM, Christian Hernandez
christi...@4over.com wrote:
 Hello Jonathan,

 I believe you can use the Red Hat Documentation for this.

 https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Evaluation_Guide/Evaluation_Guide-VDI.html#Evaluation_Guide-Add_Active_Directory

 One of the gotchas that I ran into is that you need to specify the Active
 Directory as your DNS provider in your resolv.conf file (not sure if it was
 coincidence or not; but I ran into some issues that went away when I did
 this)

 HTH


 Thank you,

 Christian Hernandez
 1225 Los Angeles Street
 Glendale, CA 91204
 Phone: 877-782-2737 ext. 4566
 Fax: 818-265-3152
 christi...@4over.com mailto:christi...@4over.com
 www.4over.com http://www.4over.com


 On Mon, Apr 22, 2013 at 2:57 PM, Jonathan Horne jho...@skopos.us wrote:

 Is there a write up out there for setting up ovirt users and adminstrators
 to authenticate into the portal via AD?



 Thanks,

 Jonathan




 
 This is a PRIVATE message. If you are not the intended recipient, please
 delete without copying and kindly advise us by e-mail of the mistake in
 delivery. NOTE: Regardless of content, this e-mail shall not operate to bind
 SKOPOS to any order or other contract unless pursuant to explicit written
 agreement or government initiative expressly permitting the use of e-mail
 for such purpose.

 ___
 Users mailing list
 Users@ovirt.org
 http://lists.ovirt.org/mailman/listinfo/users



 ___
 Users mailing list
 Users@ovirt.org
 http://lists.ovirt.org/mailman/listinfo/users

___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


Re: [Users] AD authentication for ovirt manager

2013-04-23 Thread Chris Noffsinger
Also create a different user.  For instance I could not get the
Administrator user to bind with my samba4 DC.  Had to create a different
user to bind to.

On Tue, Apr 23, 2013 at 10:09 AM, Charlie medieval...@gmail.com wrote:

 Also set your Active Directory source as your time synchronization
 provider.  You need DNS, Directory services, Kerberos and network time
 all from the same source if you want anything approaching reliability.

 --Charlie

 On Mon, Apr 22, 2013 at 6:17 PM, Christian Hernandez
 christi...@4over.com wrote:
  Hello Jonathan,
 
  I believe you can use the Red Hat Documentation for this.
 
 
 https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Evaluation_Guide/Evaluation_Guide-VDI.html#Evaluation_Guide-Add_Active_Directory
 
  One of the gotchas that I ran into is that you need to specify the
 Active
  Directory as your DNS provider in your resolv.conf file (not sure if it
 was
  coincidence or not; but I ran into some issues that went away when I did
  this)
 
  HTH
 
 
  Thank you,
 
  Christian Hernandez
  1225 Los Angeles Street
  Glendale, CA 91204
  Phone: 877-782-2737 ext. 4566
  Fax: 818-265-3152
  christi...@4over.com mailto:christi...@4over.com
  www.4over.com http://www.4over.com
 
 
  On Mon, Apr 22, 2013 at 2:57 PM, Jonathan Horne jho...@skopos.us
 wrote:
 
  Is there a write up out there for setting up ovirt users and
 adminstrators
  to authenticate into the portal via AD?
 
 
 
  Thanks,
 
  Jonathan
 
 
 
 
  
  This is a PRIVATE message. If you are not the intended recipient, please
  delete without copying and kindly advise us by e-mail of the mistake in
  delivery. NOTE: Regardless of content, this e-mail shall not operate to
 bind
  SKOPOS to any order or other contract unless pursuant to explicit
 written
  agreement or government initiative expressly permitting the use of
 e-mail
  for such purpose.
 
  ___
  Users mailing list
  Users@ovirt.org
  http://lists.ovirt.org/mailman/listinfo/users
 
 
 
  ___
  Users mailing list
  Users@ovirt.org
  http://lists.ovirt.org/mailman/listinfo/users
 
 ___
 Users mailing list
 Users@ovirt.org
 http://lists.ovirt.org/mailman/listinfo/users




-- 
Chris Noffsinger
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


Re: [Users] AD authentication for ovirt manager

2013-04-23 Thread Tom Brown



 Hello Jonathan,
 
 I believe you can use the Red Hat Documentation for this.
 
 https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Evaluation_Guide/Evaluation_Guide-VDI.html#Evaluation_Guide-Add_Active_Directory
 
 One of the gotchas that I ran into is that you need to specify the Active 
 Directory as your DNS provider in your resolv.conf file (not sure if it was 
 coincidence or not; but I ran into some issues that went away when I did this)

Has anyone had success doing this with 389 ?

cheers

___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


Re: [Users] AD authentication for ovirt manager

2013-04-23 Thread Christian Hernandez
Tom,

I *believe* that you can use 389 with TLS

FWIW I have successfully added an AD and IPA domain.


Thank you,

Christian Hernandez
1225 Los Angeles Street
Glendale, CA 91204
Phone: 877-782-2737 ext. 4566
Fax: 818-265-3152
christi...@4over.com mailto:christi...@4over.com
www.4over.com http://www.4over.com


On Tue, Apr 23, 2013 at 7:16 AM, Tom Brown t...@ng23.net wrote:




 Hello Jonathan,

 I believe you can use the Red Hat Documentation for this.


 https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Evaluation_Guide/Evaluation_Guide-VDI.html#Evaluation_Guide-Add_Active_Directory

 One of the gotchas that I ran into is that you need to specify the
 Active Directory as your DNS provider in your resolv.conf file (not sure if
 it was coincidence or not; but I ran into some issues that went away when I
 did this)


 Has anyone had success doing this with 389 ?

 cheers


___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


[Users] AD authentication for ovirt manager

2013-04-22 Thread Jonathan Horne
Is there a write up out there for setting up ovirt users and adminstrators to 
authenticate into the portal via AD?

Thanks,
Jonathan



This is a PRIVATE message. If you are not the intended recipient, please delete 
without copying and kindly advise us by e-mail of the mistake in delivery. 
NOTE: Regardless of content, this e-mail shall not operate to bind SKOPOS to 
any order or other contract unless pursuant to explicit written agreement or 
government initiative expressly permitting the use of e-mail for such purpose.
___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users


Re: [Users] AD authentication for ovirt manager

2013-04-22 Thread Christian Hernandez
Hello Jonathan,

I believe you can use the Red Hat Documentation for this.

https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Evaluation_Guide/Evaluation_Guide-VDI.html#Evaluation_Guide-Add_Active_Directory

One of the gotchas that I ran into is that you need to specify the Active
Directory as your DNS provider in your resolv.conf file (not sure if it was
coincidence or not; but I ran into some issues that went away when I did
this)

HTH


Thank you,

Christian Hernandez
1225 Los Angeles Street
Glendale, CA 91204
Phone: 877-782-2737 ext. 4566
Fax: 818-265-3152
christi...@4over.com mailto:christi...@4over.com
www.4over.com http://www.4over.com


On Mon, Apr 22, 2013 at 2:57 PM, Jonathan Horne jho...@skopos.us wrote:

  Is there a write up out there for setting up ovirt users and
 adminstrators to authenticate into the portal via AD?



 Thanks,

 Jonathan



 --
 This is a PRIVATE message. If you are not the intended recipient, please
 delete without copying and kindly advise us by e-mail of the mistake in
 delivery. NOTE: Regardless of content, this e-mail shall not operate to
 bind SKOPOS to any order or other contract unless pursuant to explicit
 written agreement or government initiative expressly permitting the use of
 e-mail for such purpose.

 ___
 Users mailing list
 Users@ovirt.org
 http://lists.ovirt.org/mailman/listinfo/users


___
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users