[389-users] NSX/F5 Load Balancing Health Checks

2019-06-17 Thread Mailvaganam, Hari
Hi: At the moment we perform TCP health check via F5 on ports 389/636 (historical inheritance) – which isn’t sufficient for HA. We are moving to an env where NSX and F5 may co-exist – and have an opportunity to re-work the LB health check for HA (on existing F5 and upcoming NSX). If running

[389-users] Re: Configuring password syncing 389 -> AD

2018-01-18 Thread Mailvaganam, Hari
I believe AD requires passwords ingested to be in clear textsomething to keep in mind. We are looking at following to experiment with syncing (for groups) -- https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/Windows_Sync.html Thanks. Best

[389-users] Re: RFC 4530 -- entryUUID attribute

2016-10-07 Thread Mailvaganam, Hari
-users] Re: RFC 4530 -- entryUUID attribute On Wed, 2016-10-05 at 17:03 +, Mailvaganam, Hari wrote: > W.r.t a vSphere implementation that has a requirement for entryUUID -- has > it, or plans to, support in 389-DS -- https://fedorahosted.org/389/ticket/137? > Hi, I've just

[389-users] RFC 4530 -- entryUUID attribute

2016-10-05 Thread Mailvaganam, Hari
W.r.t a vSphere implementation that has a requirement for entryUUID -- has it, or plans to, support in 389-DS -- https://fedorahosted.org/389/ticket/137? Thanks! ___ 389-users mailing list -- 389-users@lists.fedoraproject.org To unsubscribe send an

[389-users] Re: How can I restrict bind operation based on attributes?

2016-06-21 Thread Mailvaganam, Hari
Perhaps via suffix? From: kash...@arissystem.com [kash...@arissystem.com] Sent: Tuesday, June 21, 2016 03:46 To: 389-users@lists.fedoraproject.org Subject: [389-users] How can I restrict bind operation based on attributes? I have three applications that

[389-users] Re: Synchronize Active Directory custom extension attributes to 389 DS

2016-01-26 Thread Mailvaganam, Hari
Perhaps via LSC --- http://lsc-project.org/wiki/? From: Mor Ndoye [mnd...@fedoraproject.org] Sent: Tuesday, January 26, 2016 02:56 To: 389-users@lists.fedoraproject.org Subject: [389-users] Re: Synchronize Active Directory custom extension attributes to

Re: [389-users] 389-ds access.log parsing - turning LDAP request type into an audit event

2015-07-03 Thread Mailvaganam, Hari
If MMR - perhaps via log consolidation - e.g. ELK stack (grok filter)? Similar to https://discuss.elastic.co/t/how-filter-openldap-logs/2492. From: 389-users-boun...@lists.fedoraproject.org [389-users-boun...@lists.fedoraproject.org] on behalf of Burn

Re: [389-users] Automating a 389 DS Build

2015-03-29 Thread Mailvaganam, Hari
Is there a similar cookbook for Puppet by any chance? Google-fu is not with me on this. From: 389-users-boun...@lists.fedoraproject.org [389-users-boun...@lists.fedoraproject.org] on behalf of Alan Willis [alwil...@riotgames.com] Sent: Thursday, March 19, 2015

[389-users] PasswordLockout passwordIsGlobalPolicy

2015-02-19 Thread Mailvaganam, Hari
Hi List: in MMR, w.r.t password lockout - is the 'passwordIsGlobalPolicy: on' only required on the consumers - i.e. the count replicates among all the consumers (irrespective on which the bind was made)? Or is it also required on the suppliers (although bind are not available). config ---