On Mon, Jun 15, 2020 at 9:49 PM Robert Sturrock wrote:
> Hi Dmitri,
>
> Sorry - I did not give all the background in the interests of brevity. We
> do not want to establish a full trust between AD and IPA (at this stage).
> This is for a number of reasons, but is primarily a reluctance to bring
Robert Sturrock writes:
> Hi Dmitri,
>
> Sorry - I did not give all the background in the interests of brevity.
> We do not want to establish a full trust between AD and IPA (at this
> stage). This is for a number of reasons, but is primarily a
> reluctance to bring a very large and entirely irr
Hi Dmitri,
Sorry - I did not give all the background in the interests of brevity. We do
not want to establish a full trust between AD and IPA (at this stage). This is
for a number of reasons, but is primarily a reluctance to bring a very large
and entirely irrelevant set of AD groups across t
On Mon, Jun 15, 2020 at 2:39 AM Robert Sturrock wrote:
> Hi All,
>
> I’m trying to create a (one-way) Kerberos trust between AD and a FreeIPA
> installation, such that user TGTs from AD can be used to access resources
> in the IPA realm.
>
> I followed some (non-IPA related) steps for setting up
Hi All,
I’m trying to create a (one-way) Kerberos trust between AD and a FreeIPA
installation, such that user TGTs from AD can be used to access resources in
the IPA realm.
I followed some (non-IPA related) steps for setting up Kerberos trusts between
AD and MIT Kerberos - essentially creating
