On 25 August 2017 at 07:17, Alexander Bokovoy via FreeIPA-users <
freeipa-users@lists.fedorahosted.org> wrote:
> On to, 24 elo 2017, Jakub Hrozek via FreeIPA-users wrote:
>
>> On Thu, Aug 24, 2017 at 08:18:42AM -0600, Kristian Petersen via
>> FreeIPA-users wrote:
>>
>>> If you are using Samba with
On to, 24 elo 2017, Jakub Hrozek via FreeIPA-users wrote:
On Thu, Aug 24, 2017 at 08:18:42AM -0600, Kristian Petersen via FreeIPA-users
wrote:
If you are using Samba with FreeIPA, you may want to wait to upgrade to
7.4. There is a bug in a library that comes with sssd that will break it
for yo
On Sat, Aug 19, 2017 at 06:41:28AM +, Craig H Silva (CenITex) via
FreeIPA-users wrote:
> The circumstances/environment are a little unusual.
>
> We have a secure zone in which Windows AD has read-only domain controllers as
> a security measure which we use to authenticate against. The read-w
On Thu, Aug 24, 2017 at 10:12:55AM +0200, Michael Gusek via FreeIPA-users wrote:
> Hello Jakub,
>
> here the first lines of ldap_child.log
>
> |(Wed Aug 23 16:07:11 2017) [[sssd[ldap_child[2104 [main] (0x0400):
> ldap_child started. (Wed Aug 23 16:07:11 2017)
> [[sssd[ldap_child[2104 [mai
On Thu, Aug 24, 2017 at 08:18:42AM -0600, Kristian Petersen via FreeIPA-users
wrote:
> If you are using Samba with FreeIPA, you may want to wait to upgrade to
> 7.4. There is a bug in a library that comes with sssd that will break it
> for you. RedHat is recommending to wait for now.
The only b
On Thu, Aug 24, 2017 at 10:29:35AM -0400, Steve Weeks via FreeIPA-users wrote:
> We are running FreeIPA 4.4 on Centos 7 and trying to use radius
> authentication.
>
> Using radtest and radclient work fine and we can authenticate a user.
>
> The radius proxy and secret are set to match the values
On to, 24 elo 2017, Felipe Barreto Volpone via FreeIPA-users wrote:
Hi Bjoern,
AFAIK it should be possible to an AD user use FreeIPA vault, once you have
setup trust.
No, it is not. To get access to a vault you need to have access rights
in LDAP for that. We do not have that yet for AD users ev
Hi Bjoern,
AFAIK it should be possible to an AD user use FreeIPA vault, once you have
setup trust.
You can find documentation about AD and Vault here:
https://www.freeipa.org/page/Trusts
https://www.freeipa.org/page/V4/Password_Vault_1.2
https://www.freeipa.org/page/Active_Directory_trust_setup
O
Hi,
We use the following environment: OS CentOS 7.3 / latest FreeIPA 4.4.0
Is it possible to get access with an active directory user to the FreeIPA vault
?
If yes do you got a hint for me how to do this or where i can find
documentation?
with best regards
Björn
___
On Thu, Aug 24, 2017 at 09:51:51AM -0500, Kat via FreeIPA-users wrote:
> Hi all,
>
> Has anyone seen this before:
>
> 1. User created, and being used for logins, no issues. Works just fine.
>
> 2. At one point, keytab file is retrieved via getkeytab, which also works.
>
> 3. After the keytab is
Hi all,
Has anyone seen this before:
1. User created, and being used for logins, no issues. Works just fine.
2. At one point, keytab file is retrieved via getkeytab, which also works.
3. After the keytab is retrieved, the password no longer seems to work???
Weirdness - am I missing something
We are running FreeIPA 4.4 on Centos 7 and trying to use radius
authentication.
Using radtest and radclient work fine and we can authenticate a user.
The radius proxy and secret are set to match the values from radclient.
The user has the radius check box checked and the other two fields set to
a
pgb 205 via FreeIPA-users wrote:
> Rob, this is from replica.
> I have sent you logs from master in private.
Yeah, I didn't see anything in them and have asked for some input from
one of the dogtag developers.
rob
___
FreeIPA-users mailing list -- freei
If you are using Samba with FreeIPA, you may want to wait to upgrade to
7.4. There is a bug in a library that comes with sssd that will break it
for you. RedHat is recommending to wait for now.
On Wed, Aug 23, 2017 at 6:59 PM, Lachlan Musicman via FreeIPA-users <
freeipa-users@lists.fedorahosted
Rob, this is from replica.
I have sent you logs from master in private.
thank you
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Hello Jakub,
here the first lines of ldap_child.log
|(Wed Aug 23 16:07:11 2017) [[sssd[ldap_child[2104 [main] (0x0400):
ldap_child started. (Wed Aug 23 16:07:11 2017)
[[sssd[ldap_child[2104 [main] (0x2000): context initialized (Wed Aug
23 16:07:11 2017) [[sssd[ldap_child[2104 [unpack_
16 matches
Mail list logo
