ution is in, we'd always welcome testing
> of it. :)
This is wonderful. Thank you very much. I added myself to Cc on that
ticket.
I'm looking forward to testing it :)
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586
rPassword schema '{TOTP1}'.
Maybe I wrong or outdated here and slapo-opt also supports TOTP-only
authentication now?
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 6
some follow-up questions here. If you
> > prefer, I'll write another mail or I could open an issue on bugzilla.
>
> Open a separate issue in bugzilla.
Will do.
Many Thanks,
--
Bastian TweddellJue
ugh).
Many thanks in advance,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586
1: https://www.openldap.org/doc/admin26/slapdconf2.html
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
y practical approach is to use
`-d -1` on the ldap commands.
--
Bastian TweddellJuelich Supercomputing Centre
smime.p7s
Description: S/MIME cryptographic signature
pgrading your systems. And just to repeat
that previous and important paragraph: I tested everthing in advance so
I felt confident while doing it during production. I suggest you do
testing as well.
HIH,
--
Bastian TweddellJuelich
On 18Jan23 16:53+, Howard Chu wrote:
> Use the contrib module instead, it only does TOTP and nothing else.
In the meahnwhile we have working testbed and I would like to thank you
for your valuable input.
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2
debug)
Many thanks,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience, HPS
Many thanks to all for your comments. I think I know how this feature
can integrated into our infrastructure. I'll bring this into a testing
environment now.
Cheers,
On 17Jan23 21:27+, Howard Chu wrote:
> Bastian Tweddell wrote:
> > On 17Jan23 17:33+, Howard Chu wrote:
&g
ccessible hosts).
Many thanks,
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience, HPS
smime.p7s
Description: S/MIME cryptographic signature
, no password)
Does this make sense and can this be achieved?
Thanks in advance,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience, HPS
On 21Oct21 18:39+0300, Nick Milas wrote:
> It shows that the CA/cert has issues. Yet, everything was working fine
> until last upgrade!
Check your ldaprc for TLS_REQCERT. Maybe that changed in the upgrade?
--
Bastian TweddellJuelich Supercomputing Centre
smime.p7s
Descript
SERVICE
This is nice, I think about to adopt that and abandon -u/-g
> LimitNOFILE=96
this could be too low, depending on use case. it limits nr of incoming
connections.
> RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
> # various hardening options from ansi
Which is good, but the failed
> > slaptest does not print the reason for the failure.
>
> Thanks, filed as ITS#9713. This should be fixed now in head and RE26, if
> you would like to confirm.
I updated this issue with a comment.
Cheers,
--
Bastian Twed
On 30Sep21 08:39-0700, Quanah Gibson-Mount wrote:
> > The setup we use is quite simple, so a number of tests are skipped.
> > Would you recommend, or like to see certain configurations to be tested?
>
> Mainly the new logging bits.
A minor thing:
I think I discovered a change in slaptest in rc
est skipped' make_test.out|wc -l
40
% grep 'Test .* disabled' make_test.out|wc -l
1
--- eop
The numbers match. Looks good!
The setup we use is quite simple, so a number of tests are skipped.
Would you recommend, or like to see certain configurations to be tested?
Cheers,
--
Bastian Tweddell
eries data in Prometheus.
> >
> > So I wonder what's the difference? Is it worth to always look at both?
We are using prometheus, too. Would you be so kind to share some
information about mtail?
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461
ast
mail threads.
Many thanks,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience, HPS
smime.p7s
Description: S/MIME cryptographic signature
In case slapd did not start up, I always succeeded to find the issue
with:
slapd ${YADAYADA} -d -1
`-d -1` enables all log levels, it's highly verbose.
Cheers,
--
Bastian TweddellJuelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience, HPS
could solve your problem.
1: http://www.openldap.org/doc/admin24/security.html
Cheers,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461)
On 29Jun16 10:04-0700, Quanah Gibson-Mount wrote:
> --On Wednesday, June 29, 2016 4:21 PM +0200 Bastian Tweddell
> <b.twedd...@fz-juelich.de> wrote:
>
> > On 27Jun16 09:16-0700, Quanah Gibson-Mount wrote:
> > > --On Monday, June 27, 2016 2:00 PM + Gurjot Kaur
d correctly, that I should prefer the use of ldapadd?
Does ldapadd also support operational and user attributes?
Many thanks,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience
smime.p7s
Description: S/MIME cryptographic signature
might be of
interest to you.
- After slapadd, run both servers with -d -1 and read the excessive
debug information. These always helped me a lot.
Cheers,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience
smime.p7s
Description: S/MIME cryptographic signature
the
existing attribute?
Do you think, keeping multiple entries for an user is too much overhead
compared to use only one entry with multiple objectClasses?
Many thanks,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience
For daily-business modifications to the LDAP DB I always use ldap*
commands.
Cheers,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPC in Neuroscience
smime.p7s
Description: S/MIME cryptographic signature
On 24Jun16 07:19-0700, Quanah Gibson-Mount wrote:
> --On Friday, June 24, 2016 1:29 PM +0200 Bastian Tweddell
> > I am used to run slapcat to create backups of the backend database
> > _while_ slapd is running. Recently I migrated from bdb to mdb. Now I
> > read that using
:
- Is that still true?
- In which situation could data corruption occur?
- Is that supposed to change in the future?
Many thanks,
--
Bastian Tweddell Juelich Supercomputing Centre
phone: +49 (2461) 61-6586 HPCNS, HPS
28 matches
Mail list logo
