Tien Cao Huy via FreeIPA-users wrote: > Dear, > > I’ve added a new replica server. The replication completed successfully, but > users without an ipaNTSecurityIdentifier are unable to log in to the WebUI on > the new replica server. The other (older) replica servers are still working > fine. Only users with an ipaNTSecurityIdentifier can authenticate > successfully. > > How can I resolve this issue? Should I run the command ipa config-mod > --enable-sid --add-sids on this replica server?
Yes. > > I need to know if I follow this command it will affect the active server > working now? Data is replicated so yes, the SIDs will appear on all servers. That shouldn't affect their operation though. rob -- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
