Ryan Slominski via FreeIPA-users wrote:
> I would like to be able to use the ipa command line interface, which
> generally requires a Kerberos ticket. For example to add a user to a group -
> I want to allow root to do anything the admin user can do. Perhaps I’m
> overlooking something but sim
I would like to be able to use the ipa command line interface, which generally
requires a Kerberos ticket. For example to add a user to a group - I want to
allow root to do anything the admin user can do. Perhaps I’m overlooking
something but simply using “su admin” won’t work because it doesn
On pe, 27 heinä 2018, Ryan Slominski via FreeIPA-users wrote:
Hi Alexander,
I'm actually looking for a way to execute a command as local root
without being prompted for a password. My understanding is adding
an account for root to IPA is not a good idea as it would then be a
domain accou
Hi Alexander,
I'm actually looking for a way to execute a command as local root without
being prompted for a password. My understanding is adding an account for root
to IPA is not a good idea as it would then be a domain account. I don't see
how I can add root to "admins" group then. Also,
On pe, 27 heinä 2018, lejeczek via FreeIPA-users wrote:
how guys,
how do you go up, from a domain like: from.here to something like:
up.from.here ?
Do you set a separate IPA domain on separate server? If yes, how then
do both domains work together?
Do you somehow reconfigure current deploy
how guys,
how do you go up, from a domain like: from.here to something like:
up.from.here ?
Do you set a separate IPA domain on separate server? If yes, how then do
both domains work together?
Do you somehow reconfigure current deployment?
gee.. I'm really hopping in the dark here. Is such
On pe, 27 heinä 2018, lejeczek wrote:
On 23/07/18 09:33, Alexander Bokovoy wrote:
On ma, 23 heinä 2018, lejeczek via FreeIPA-users wrote:
hi guys
I wonder, and hope you guys could tell if it's possible in IPA,
when there is one-way trust established between AD & IPA, to allow
only certain ac
On 23/07/18 09:33, Alexander Bokovoy wrote:
On ma, 23 heinä 2018, lejeczek via FreeIPA-users wrote:
hi guys
I wonder, and hope you guys could tell if it's possible in IPA, when
there is one-way trust established between AD & IPA, to allow only
certain account to login & access IPA's resources
Hi Kyle,
On ke, 25 heinä 2018, Kyle Jarrett via FreeIPA-users wrote:
I'll bump this, because Mr. Bokovoy mentioned here ->
https://www.redhat.com/archives/freeipa-users/2016-December/msg00199.html that
the "slapi-nis plugin does not support paged results control for the
virtual subtree." and ela
On 23 Jul 2018 09:43, Jakub Hrozek wrote:
On 20 Jul 2018, at 17:51, Rene Trippen via FreeIPA-users
wrote:
Hi there,
I´ve got a external trust established between the ipa server and a AD
domain (child of parent)
ipa trust-add --type=ad subdomain.main.corp.com --external=true
Active Direct
Harri, are you sure about your statement that sssd does not write critical
errors?
There are some very comprehensive logs. You are correct to increase the
verbosity level though.
I would advise heading over to the sssd-users list and asking the same
question.
On Thu, 26 Jul 2018 at 10:49, Hara
I'll bump this, because Mr. Bokovoy mentioned here ->
https://www.redhat.com/archives/freeipa-users/2016-December/msg00199.html that
the "slapi-nis plugin does not support paged results control for the
virtual subtree." and elaborated that they were working on rebasing it to
another 389-ds instance
It looks like I got it fixed by adding
if 'sn' not in entry_attrs:
entry_attrs.setdefault('sn', 'unknown sn')
at line 237 of /usr/lib/python3.6/site-packages/ipaserver/plugins/migration.py
All my users are imported now.
___
FreeIPA-users m
On Fri, Jul 27, 2018 at 12:53:33PM +0200, Rene Trippen wrote:
> > > I can provide you tons of logs, but I don´t know where to start.
> >
> > Logs from sssd on the ipa master are usually a good point to start, see
> > https://docs.pagure.org/SSSD.sssd/users/troubleshooting.html
>
> Thank you, tha
14 matches
Mail list logo
