[Freeipa-users] Re: AD Trust Types

On ti, 15 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 15.06.21 07:39, Alexander Bokovoy via FreeIPA-users wrote: On ma, 14 kesä 2021, Ronald Wimmer wrote: On 14.06.21 13:37, Alexander Bokovoy wrote: On ma, 14 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 12.06.21 13:08, Floren

[Freeipa-users] Re: AD Trust Types

On 15.06.21 07:39, Alexander Bokovoy via FreeIPA-users wrote: On ma, 14 kesä 2021, Ronald Wimmer wrote: On 14.06.21 13:37, Alexander Bokovoy wrote: On ma, 14 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 12.06.21 13:08, Florence Renaud via FreeIPA-users wrote: Hi, please refer to Exte

[Freeipa-users] Re: AD Trust Types

On ma, 14 kesä 2021, Ronald Wimmer wrote: On 14.06.21 13:37, Alexander Bokovoy wrote: On ma, 14 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 12.06.21 13:08, Florence Renaud via FreeIPA-users wrote: Hi, please refer to External Trusts to Active Directory [1] from WIndows Integration g

[Freeipa-users] Re: How to blend IPA server 4.1.4 on F21 with server 4.6.8 on C7?

Bret Wortman via FreeIPA-users wrote: > This appears to be the error, or at least it's the only "fatal" I could find > in the stream and it's near enough to the end of traffic that it seems > likely. I'm no expert on Wireshark so I'm hoping someone is willing to take a > peek and let me know if

[Freeipa-users] FreeIPA 4.9.4 and 4.9.5 released

The FreeIPA team would like to announce FreeIPA 4.9.4 and 4.9.5 releases! Yes, this is not a mistake. First we created FreeIPA 4.9.4 on June 4th but then found a late time regression that took us more than ten days to sort out, thus going with the FreeIPA 4.9.5 release. This regression concerns

[Freeipa-users] Re: How to blend IPA server 4.1.4 on F21 with server 4.6.8 on C7?

This appears to be the error, or at least it's the only "fatal" I could find in the stream and it's near enough to the end of traffic that it seems likely. I'm no expert on Wireshark so I'm hoping someone is willing to take a peek and let me know if there's something obvious here. https://gist.

[Freeipa-users] Re: DNS Locations and external DNS

On 14.06.21 15:52, Rafael Jeffman wrote: Hello Ronald, On Mon, Jun 14, 2021 at 8:12 AM Ronald Wimmer via FreeIPA-users > wrote: > > Is it sufficient to create DNS locations in IPA and do a ipa > dns-update-system-records --dry-run in order to pop

[Freeipa-users] Re: sssd version 2.2.3 issues with AD Trust View

Hi Sumit, I do not override the primary gid (because I had this issue before and per your advise I removed the gid override) , only the UID. The same setup works with the older sssd version, as I mentioned and that's why i thought that something might have changed in sssd. ___

[Freeipa-users] Re: healthcheck complains about a removed replica

> On 29-05-2021 10:21, Alexander Bokovoy wrote: > > But I did use "ipa-csreplica-manage del" as well. However, I remember that it > complained it couldn't remove that host. I was assuming it was already gone. > When I list with ipa-csreplica-manage then I don't see the old hosts anymore. Its wort

[Freeipa-users] Re: DNS Locations and external DNS

Hello Ronald, On Mon, Jun 14, 2021 at 8:12 AM Ronald Wimmer via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote: > > Is it sufficient to create DNS locations in IPA and do a ipa > dns-update-system-records --dry-run in order to populate new DNS Zone > information to the external DNS sy

[Freeipa-users] Re: sssd version 2.2.3 issues with AD Trust View

Am Mon, Jun 14, 2021 at 11:50:44AM - schrieb iulian roman via FreeIPA-users: > Hello everybody, > > I have an IPA setup with AD trust configured and Trust View defined on the > IPA server. Everything works properly on Ubuntu 18 clients with sssd 1.16.1 > but it doesn't on Ubuntu 20 with ss

[Freeipa-users] Re: AD Trust Types

On 14.06.21 13:37, Alexander Bokovoy wrote: On ma, 14 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 12.06.21 13:08, Florence Renaud via FreeIPA-users wrote: Hi, please refer to External Trusts to Active Directory [1] from WIndows Integration guide, it nicely explains the difference bet

[Freeipa-users] sssd version 2.2.3 issues with AD Trust View

Hello everybody, I have an IPA setup with AD trust configured and Trust View defined on the IPA server. Everything works properly on Ubuntu 18 clients with sssd 1.16.1 but it doesn't on Ubuntu 20 with sssd version 2.2.3. I can list /query the AD accounts which are not part of the default Trus

[Freeipa-users] Re: AD Trust Types

On ma, 14 kesä 2021, Ronald Wimmer via FreeIPA-users wrote: On 12.06.21 13:08, Florence Renaud via FreeIPA-users wrote: Hi, please refer to External Trusts to Active Directory [1] from WIndows Integration guide, it nicely explains the difference between external trust and forest trust. flo

[Freeipa-users] Re: AD Trust Types

On 12.06.21 13:08, Florence Renaud via FreeIPA-users wrote: Hi, please refer to External Trusts to Active Directory [1] from WIndows Integration guide, it nicely explains the difference between external trust and forest trust. flo [1] https://access.redhat.com/documentation/en-us/red_hat_en

[Freeipa-users] DNS Locations and external DNS

Is it sufficient to create DNS locations in IPA and do a ipa dns-update-system-records --dry-run in order to populate new DNS Zone information to the external DNS system? Apart from adding IPA clients to their respective locations, there is nothing to do regarding DNS locations on IPA clients,

[Freeipa-users] Re: How to blend IPA server 4.1.4 on F21 with server 4.6.8 on C7?

On Thu, Jun 10, 2021, at 5:45 PM, Rob Crittenden wrote: > So you've run ipa-replica-prepare and then ship that file to > right? Exactly. > At some point we started re-generating the CA certs file > (/root/cacert.p12) during preparation. Did we do this in F21? I have no > idea. > > Can you use