the bug for adding Pam_mkhomedir to the default stack is 557013 (also 55)
although at the end I have used this config file
(/usr/share/pam-configs/my_mkhomedir):
Name: activate mkhomedir
Default: yes
Priority: 900
Session-Type: Additional
Session:
optionalpam_m
there is a problem with the insserv package for the i386 architecture
which makes that chkconfig can't enable ntp, I have opened the bug
1000834 about this
--
You received this bug notification because you are a member of FreeIPA,
which is subscribed to freeipa in Ubuntu.
https://bugs.launchpad.n
ntpdate has not -U option in ubuntu so that makes ntpconf.py crash, this
patch removes the -U option and comments some calls to sysconfig files
which make the file crash also
** Patch added: "patch to make ntpconf.py work in ubuntu"
https://bugs.launchpad.net/ubuntu/+source/freeipa/+bug/997990
the discovery of dreeipa servers doesn't works because relies in authcobfig
through the acutil python package, it's import is comented in dnsclient.py. I
have build a patch to make this work using pydns
(http://pydns.sourceforge.net/). take a look to it, it wold be nice to include
it and/or mak
good news: the workaround of using libpam-cracklib really worked in
ubuntu, in fedora the thing also works
the problem was that my testing machines were in a virtualbox with nat
networking and in that configuration there can be some problems for making
kerberos run correctly:
http://hasustorm.co
the problem with the authentication token could be related to something
in the server, if I join a fedora box to server I have the same problems
but with a joined centos box all seems ok. I'm going to install the
server part in a fedora box and repeat all my testing
thanks
--
You received this b
I have removed use_authtok from the sss file but there must be something wrong
because I can't still change the password. I have followed the instructions
here https://fedoraproject.org/wiki/How_to_debug_SSSD_problems to enable
sssd_pam debug and it seems to be doing the same thing:
(Tue May 15
for the moment these things doesn't work:
-gdm integration: I intend to use this for normal users who will use ubuntu as
desktop machines so this is a must
-the first time I tried to use a domain user I receive an error when trying to
change the password, in /var/log/auth.log:
May 14 14:03:47 ubu
I have found this messages about problems running freipa in ubuntu:
https://www.redhat.com/archives/freeipa-devel/2011-September/msg00407.html
https://www.redhat.com/archives/freeipa-devel/2011-September/msg00408.html
and this ticket:
https://fedorahosted.org/freeipa/ticket/1887
I created the nss
I have enabled ssl3 in the server with this order:
ldapmodify -D "cn=directory manager" -W -p 389 -h localhost -x
dn: cn=encryption,cn=config
changetype: modify
replace: nsSSL3
nsSSL3: on
exit
restarted the server with ipactl restart and now the command ipa-client-install
initiates the joining
I'have download and compiled some versions of gnutls and this is the result:
gnutls-2.8.5: works
gnutls-2.12.19: fail
gnutls-3.0.19: fail
--
You received this bug notification because you are a member of FreeIPA,
which is subscribed to freeipa in Ubuntu.
https://bugs.launchpad.net/bugs/997990
Ti
the problem could be also reproduced with the gnutls-cli command. it seeems
that's launching the handshake in an incompatible manner with the server.
the same comman from a centos box works (2.8.5 version of gnutls-cli). in the
ubuntu box is version 2.12.14
root@ubuntuprovesfreeipa:/etc/ldap# gn
trying to connect with ldapseach gives the same error:
pasqual@ubuntuprovesfreeipa:~$ ldapsearch -x -b -v -d8 "dc=linux,dc=gva,dc=es"
-H ldaps://freeipaserver.linux.gva.es "objectClass=*"
TLS: can't connect: A TLS packet with unexpected length was received..
ldap_sasl_bind(SIMPLE): Can't contact
Public bug reported:
I try to join a freeipa domain and it seems there is some problem with the tls
negotiacion. this is the log:
pasqual@ubuntuprovesfreeipa:~$ sudo ipa-client-install -d --enable-dns-updates
[sudo] password for pasqual:
root: DEBUG/usr/sbin/ipa-client-install was in
14 matches
Mail list logo
