hi guys I've have AD trust work fine (gssapi), ssh & samba are password-less when the trust is establish with 'admin' credentials.
But the strory is very different with 'shared secret'. Kerberos does not work, passwords are asked for and with Windows cifs - asks for username and no authentication even with passwords! And this weird bit, I do: $ ipa trust-add --all --two-way=0 --type=ad bec.private.mac.ac.uk --trust-secret --server=win8-vm.bec.private.mac.ac.uk Shared secret for the trust: ... Here, for the 'secret' I can punch in anything and IPA will say that the trust was added successfully - this surely must not be right, right? So, should 'secret' work for one-way incoming trust in IPA? To me, it does not seem like. many thanks, L.
pEpkey.asc
Description: application/pgp-keys
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org