[Freeipa-users] Re: FreeIPA Plugins not found

José Luís wrote: > Thanks for your answer Rob, > > The code I quote is from  Alexander Bokovoy > . > > Sorry, what you mean by "You're trying to use code for a much older > version"? Is there any other way more sophistic

[Freeipa-users] Re: FreeIPA Plugins not found

Thanks for your answer Rob, The code I quote is from Alexander Bokovoy . Sorry, what you mean by "You're trying to use code for a much older version"? Is there any other way more sophisticated? If yes, let me know ple

[Freeipa-users] Re: FreeIPA Plugins not found

Carlos Queen via FreeIPA-users wrote: > Hello everyone, > > I want to change my email format and I searched out, I found an instruction > that uses a piece of python code in > /usr/lib/python2.7/site-packages/ipalib/plugins/, problem is that my ipa > server version is 4.6.8 and API 2.237 and it

[Freeipa-users] FreeIPA Plugins not found

Hello everyone, I want to change my email format and I searched out, I found an instruction that uses a piece of python code in /usr/lib/python2.7/site-packages/ipalib/plugins/, problem is that my ipa server version is 4.6.8 and API 2.237 and it has not the directory plugins. My question is:

[Freeipa-users] Re: using SSH with password authentication when NIS is still running with FreeIPA

On Tue, Mar 16, 2021 at 3:40 PM Rob Crittenden wrote: > > It depends on what the expectations are for these user-owned > machines. > > > > > > Only expectation is to be able to log in to a server, get access to > > their home directory and be able to do their assignments, e.g., C++, > > Java

[Freeipa-users] Re: using SSH with password authentication when NIS is still running with FreeIPA

Robert Kudyba wrote: > > > On Mon, Mar 15, 2021 at 4:31 PM Rob Crittenden > wrote: > > Robert Kudyba wrote: > > I'd like to provide an update. I can get ssh -k to work but here's > what > > I had to do: > > 1. I had to run ipa-client-install on an

[Freeipa-users] Re: using SSH with password authentication when NIS is still running with FreeIPA

On Mon, Mar 15, 2021 at 4:31 PM Rob Crittenden wrote: > Robert Kudyba wrote: > > I'd like to provide an update. I can get ssh -k to work but here's what > > I had to do: > > 1. I had to run ipa-client-install on another server/computer > > 2. I ran kinit ouru...@ourdomain.edu

[Freeipa-users] Re: reduce "normal user" permission

Scott Serr via FreeIPA-users wrote: > Two parts to this question: > > Is there a way to disable a normal user's ability to modify their > attributes like their name? ipa help selfservice > And along those lines, is there a convenient way to reduce what a normal > user sees of other users (via we

[Freeipa-users] Re: Another 2FA question Debian and Ubuntu

Thanks for the swift response Sumit, It prompted some more testing - disabling unix auth and leaving only sss active (from /usr/share/pam-configs) behaved, and I worked through the differences of what they were pulling in vs the link I had been following. In the end it was an embarrassing format f

[Freeipa-users] reduce "normal user" permission

Two parts to this question: Is there a way to disable a normal user's ability to modify their attributes like their name? And along those lines, is there a convenient way to reduce what a normal user sees of other users (via web and cli)? I'm using version 4.8. Thank you!

[Freeipa-users] Multi-Master addition to existing cluster

I have a working FreeIPA cluster and need to start deploying for other geolocations. I deployed with freeipa-ansible. While I can find docs on multi-master setups I am struggling to find the initial setup bits. Would it be best to deploy a new cluster without any knowledge of the existing cluster