Hello Rob.
Thank you for your answer.
We are beginning a study to migrate to RHEL7 so I have hope for a new IPA
version sooner or later :-).
The ipa master is on a VM and we dont have multi master yet.
Hm, I don't use by defaut this environment variable, maybe I should
temporarily use it. When
On to, 26 heinä 2018, Ryan Slominski via FreeIPA-users wrote:
Kerberos has kadmin.local, and I'm looking for a similar way to execute
admin commands as the local root user. Looks like I could create a
keytab, and use kinit on it, but ipa-getkey doesn't seem to work for
the admin principal. So
Kerberos has kadmin.local, and I'm looking for a similar way to execute admin
commands as the local root user. Looks like I could create a keytab, and use
kinit on it, but ipa-getkey doesn't seem to work for the admin principal. So I
could create a new service account instead, but I can't see
lune voo via FreeIPA-users wrote:
> Hello everyone.
>
> I send you this mail because I have sometimes errors "Cannot contact any
> KDC for realm". When I retry it works fine. So this error is kind of random.
>
> I'm using Freeipa 3.0 in RHEL6.6 with sssd.
>
> I was wondering how to investigate t
Hi all.
I wonder how to force ssh keys only all the users with freeIPA. We have
4.5.4 version.
Is it the only way changing the sshd_config from PasswordAuthentication
from yes to *NO*?
Cheers
--
*Alfredo*
___
FreeIPA-users mailing list -- freeipa-user
None via FreeIPA-users writes:
> Can we only install LDAP related components, with Kerberos? How?
Not using freeIPA - freeIPA is mostly all or nothing.
MIT has some documentation on how to install a KDC with openLDAP:
http://web.mit.edu/kerberos/krb5-devel/doc/admin/conf_ldap.html
Please note,
lune voo via FreeIPA-users
writes:
> I'm using Freeipa 3.0 in RHEL6.6 with sssd.
This version is pretty old, so I'm not sure how much support you're
going to get, but some thoughts:
> I send you this mail because I have sometimes errors "Cannot contact
> any KDC for realm". When I retry it work
On to, 26 heinä 2018, michael...@sina.cn wrote:
Thanks for your reminding.
One more question, can we set the krb5.conf location to a different
path? The default is /etc/krb5.conf, can we change it to a different
path?
Again, please give a bit more context on what you are trying to achieve.
Are
Thanks for your reminding.
One more question, can we set the krb5.conf location to a different path? The
default is /etc/krb5.conf, can we change it to a different path?
- 原始邮件 -
发件人:Alexander Bokovoy via FreeIPA-users
收件人:michael...@sina.cn, FreeIPA users list
抄送人:Alexander Bokovoy
主
Hello everyone.
I send you this mail because I have sometimes errors "Cannot contact any
KDC for realm". When I retry it works fine. So this error is kind of random.
I'm using Freeipa 3.0 in RHEL6.6 with sssd.
I was wondering how to investigate this kind of error ?
May I monitore some KPI from
Hi folks,
Apparently sssd goes down and up again and again. I found this in
/var/log/daemon.log on our git server:
Jul 23 18:02:08 git01 sssd[be[example.de]]: Shutting down
Jul 23 18:02:08 git01 sssd[pam]: Shutting down
Jul 23 18:02:08 git01 sssd[nss]: Shutting down
Jul 23 18:02:09 git01 sssd[pa
OK, maybe it’s this:
(Tue Jul 24 23:53:31 2018) [sssd[be[fs.lan]]] [sdap_print_server] (0x2000):
Searching 192.168.2.105:389
(Tue Jul 24 23:53:31 2018) [sssd[be[fs.lan]]] [sdap_get_generic_ext_step]
(0x0400): calling ldap_search_ext with
[(&(objectClass=ipaOverrideAnchor)(ipaAnchorUUID=:SID:S-1-
On to, 26 heinä 2018, None via FreeIPA-users wrote:
Dear,
Can we only install LDAP related components, with Kerberos? How?
Do you mean you want LDAP server only? LDAP server with Kerberos KDC?
LDAP server without Kerberos KDC?
FreeIPA is an integrated solution, so you cannot install separate
c
13 matches
Mail list logo
