+1 for FreeIPA or Red Hat IdM (if you wanted the supported version).
If you don't want the full blown IPA product with Kerberos and PKI,
you can use the 389 Directory Server. I've found it to have the best
multi-master support of any of the options out there.
Disclaimer: I do work with with the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Check out http://www.freeipa.org, if you are looking for an integrated
solution that can sync with AD. It supports One Time Passwords in
order to obtain a kerberos TGT and has an integrated OTP server.
If you are looking for a standalone 2 factor aut
On 06/11/2014 12:23 PM, Will Dennis wrote:
> Hi all,
>
>
>
> We have a research dept that has cooked up a homebrew provisioning
> system over time, that uses PXE, kickstart, some custom scripts, and
> Puppet to provision their bare-metal servers. While it has worked well
> in the past, its show
+1 to Thunderbird. I tend to use Mutt at work, which is great at cutting
through the cruft.
Cheers,
Brian
> On Apr 17, 2014, at 9:09 PM, Glenn Sieb wrote:
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>> On 4/17/14, 7:36 PM, john boris wrote:
>> With the recent heartbleed issue my pr
Cobbler works well, but it's a little stale these days. You might also look at
http://theforeman.org
Cheers,
Brian
> On Feb 16, 2014, at 9:46 AM, Christopher Webber wrote:
>
> I have used cobbler in the past but if I were going another round would
> probably look at razor (https://github.com
Turning off ALUA on the host and controller would be a good test as well. ALUA
is usually something you want to use, however, I've seen it cause performance
and failover issues in certain environments.
Cheers,
Brian
> On Feb 3, 2014, at 8:04 PM, "Robinson, Greg"
> wrote:
>
> UNCLASSIFIED
>
On 03/08/2013 08:45 AM, Andrew Hume wrote:
> does anyone have real experience with ethernet bond mode 6 (balanced-alb)?
>
> we have 5 source servers each connected to two switches (A and B).
> each server operates their pair of 1Gbps connections as an
> active/passive pair
> (under Solaris).
>
>
On 01/30/2013 03:38 PM, Andrew Hume wrote:
> is it possible to do two levels of binding under RHEL?
> we want to do something like:
>
> ec0 = bond rr eth0 eth1
> ec1 = bond rr eth2 eth3
> poot = bond active-backup ec0 ec1
No, that won't work. If you don't have LACP support on your switch(es),
yo
On 07/02/2012 01:17 PM, Ray Van Dolson wrote:
> On Mon, Jul 02, 2012 at 01:14:30PM -0400, Brian J. Atkisson wrote:
>> All,
>>
>> I'm looking for suggestions/feedback on rack management software. The
>> basic problem I want to solve is tracking what hardware is in
All,
I'm looking for suggestions/feedback on rack management software. The
basic problem I want to solve is tracking what hardware is installed in
what rack and colo. I'd rather stick with an open source web product.
The commercial products all seem to want to be your CMDB and take over
your env
On 07/02/2012 11:43 AM, Matt Lawrence wrote:
> I've been asked to research the various options for Directory Services
> for Linux. The likely environment will be SLES and the requirements are
> not terribly complex. At this point the main interest is in doing
> account and password management in
Do you also have a native/default/untagged vlan for eth0?
Cheers,
Brian
On 05/02/2012 12:26 PM, Will Dennis wrote:
> We ran into a problem with trunking (multi-VLAN over one NIC) with
> RedHat EL 6 that we haven't seen before. We do have RedHat EL 4 machines
> that are running multi-VLAN over on
On 04/27/2012 07:38 AM, "Paul DiSciascio" wrote:
> Hi,
> I'm in the early stages of a project to deploy a unix-only kerberos
> realm that will serve around 1000 unix servers. It's an MIT kerberos
> realm with the KDCs on SuSE Linux.
>
> Does anyone have any experience doing something like thi
On 04/06/2012 11:26 AM, Tim Kirby wrote:
> Much to my surprise and contrary to many years of prior stance
> to the contrary, a "fast track" project has appeared at $WORK
> with a view to "supporting" Mac laptops as an alternative to
> the Dell windows systems - certain area, in particular in
> engi
On 29/06/11 11:33 -0400, Patrick Cable wrote:
This one's probably pretty simple -- but the exact phrase to google
for is, well, elusive to me.
So, when I 'su' or 'su -' to a user's account, all his groups show up.
[root@user ~]# su - juser
user:/home/juser> groups
stapusr wheel p2218808 p10022
On 22/06/11 11:23 -0400, Will Dennis wrote:
From my vantage point as a “Windows guy” (I do also use and appreciate Linux,
but not really a hard-core Linux admin), this looks like “Active Directory for
Linux”… Am I correct in this analysis? If not, can anyone help me understand
this? We still are
On 21/06/11 17:43 -0500, Justin Ellison wrote:
>I finally had some time to download and install Fedora 15 on a VM and installed
>FreeIPA. Holy cow, is that a nice web-based interface they have going for them
>-- if you haven't seen it in the last year or so, you owe it to yourself to
>take a look.
On 27/05/11 12:06 -0700, Matthias Birkner wrote:
>At $ork we have been "granted the opportunity" to consolidate our 20-odd,
>globally dispersed, NIS domains into a central LDAP database. If anyone has
>success stories, war stories, or good references they'd be willing to share,
>I'd
>appreciate a
On 22/03/11 15:00 -0400, Brian Gold wrote:
>Hello all,
>
>I recently took over the position of Sysadmin in an organization that has a
>number of Xen virtual machines running in RHEL on older hardware. They recently
>purchased some newer servers that can handle hardware virtualization. I've had
>exp
On 15/02/11 20:52 +, Ari Constancio wrote:
>Hi,
>
>We're about to introduce Active Directory in an environment based on
>LDAP (OpenLDAP) for accounts. Password synchronization should be
>bidirectional if possible.
>I'd like to hear any advice on how folks are integrating AD and LDAP servers.
>
On 16/12/10 11:50 -0800, da...@lang.hm wrote:
>On Thu, 16 Dec 2010, Ski Kacoroski wrote:
>
>> Thanks for the info. I wonder if this will make a difference for
>> machines running on vmware through a vmdk file system? In my email
>> server case, it was a direct connection to a lun on the SAN.
>
>
21 matches
Mail list logo
