Mai simplu ies cu o masina
> >low-power zidita in perete pornita pe veci si cu QoS activat pentru
> >intervale in care sa poata accesa web ul si sa expuna serviciile.
> >Ultima tentativa personala a fost, cu un dongle USB 4G de la Telia cred
> >este un Huawei (merge super al
Salut,
Nu exista o solutie de backup GSM/GPRS/UMTS care sa permita dialup de la
modem la modem. Protocolul IP implementat de modemurile existente (LTS),
necesita suport din partea retelei iar modemul discuta cu linux-ul via PPP
(pppd daca este legat pe serial sau USB<>V-Serial<>MODEM). COnexiunea
some key is updated.
I would like to ask how the pub keys are refreshed/cached/stored and if there
is any caching parameter which can be configured to periodically update the
cache on the clients or if there is any other method which can make the setup
more reliable ?
Best regards,
iulian
Hello!
I am interested in making a high-performance project which involves a
lot of math, which is why I am interested in using SIMD (AVX2) on x86_64
(and for fun as well, if I'm honest). I am coming mainly from the C and
C++ world where one has intrinsics (such as `_mm256_add_epi64`, to give
an
Hello,
I have a FreeIPA setup with ad trust configured. Everything works, except the
login to the WEB UI with an Active Directory account. The only possibility to
login to the WEB UI is via the admin account.
In the /var/log/krb5kdc.log i have the following entries after i try to connect
to
Salut,
In general NVME e optimizat pt. 4K. Eu folosesc la greu zfs, si pot
vedea statistica legata
de marimea blocurilor scrise de zfs(grosul e 4K). Similar pe orce linux
se poate vedea din cate am inteles cu iostat(vezi areq-sz),vmstat, cat
sa-ti
faci o idee despre care este load-ul tau ca
Hi,
Thank you , this is what I was looking for !
Regards,
iulian
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https
clients ?
Regards,
iulian
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code
Hello Everybody,
I would like to ask if it is possible to deny access to a specific server group
for a group of users who have access to all servers by default.
Example: operators group have access to all servers , but I would like to deny
access for them for a specific subset of servers
Thank You Rob! It was a good hint. I forgot to bind roles with privilege,
therefore the "memberofindirect" was not present in the attributes of the user.
After I added privilege to the role, it worked, and user-show does display
memberofindirect for permission and privilege.
Regard
ple,dc=corp
Target DN: cn=*,cn=oraclecontext,dc=ipa,dc=example,dc=corp
Permission flags: SYSTEM, V2
Granted to Privilege: tns administrators
Any ideas/hints would be really appreciated.
Regards,
iulian roman
___
FreeIPA-users mailing l
Hi Florence,
Thank you for the hint. Indeed, after i added the override I can authenticate
via WebUI.
Nevertheless, after I added the public key to my profile I still cannot
authenticate to ipa clients without password. Any idea where should I look into
?
Regards,
iulian roman
Hi Pedro,
I've tried and restart several times, without any success. I have to mention
that this issue is only with the ActiveDirectory users, with IPA defined users
it works properly.
Regards,
iulian roman
___
FreeIPA-users mailing list
04.ipa.example.local@IPA.EXAMPLE.LOCAL for ldap/c
xxxipaprd04.ipa.example.local@IPA.EXAMPLE.LOCAL
Feb 03 14:54:13 xxxipaprd04.ipa.example.local krb5kdc[3151688](info): ...
CONSTRAINED-DELEGATION s4u-client=user@EXAMPLE.LOCAL
Any help would be really appreciated.
Re
Both IPA servers are configured as trust agents. For all the other groups
everything works as expected, only for the newly defined group is not displayed
on one if the IPA servers.
Regards,
iulian
___
FreeIPA-users mailing list -- freeipa-users
Hi everybody,
I have an IPA setup with AD trust and when I added a new group in AD it is
detected only on one ipa server (I have 2 ipa servers in replication mode).
getent group correctly returns the group only on one IPA server, therefore only
the ipa clients enrolled to that ipa server can
Hello,
I have an IPA setup and AD trust configured. After we removed an OU from AD ,
on the Linux side the users still show as part of those groups from the OU
removed. I run sss_cache -u on both IPA servers and IPA clients, but the issue
seems to not be solved.
Any idea how those groups can
Hello,
I have an IPA setup and AD trust configured. After we removed an OU from AD ,
on the Linux side the users still show as part of those groups from the OU
removed. I run sss_cache -u on both IPA servers and IPA clients, but the issue
seems to not be solved.
Any idea how those groups can
exhibit the performance
problem, so it must be related to table contents).
Is there any way to validate the bloated index hypothesis before I invest
too much in this direction?
iulian
On Mon, Dec 20, 2021 at 1:42 PM Pavel Stehule
wrote:
> Hi
>
> po 20. 12. 2021 v 13:31 odesílatel iuli
Hi,
I was analyzing the query performance in a certain code path and noticed
that practically all of the query time is spent planning (11s planning,
200ms execution time). Here is the output of EXPLAIN ANALYZE. I tried using
a prepared statement with three parameters (run_id, and the two text
does not work.
Thanks,
iulian
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code
Hello everybody,
Does anybody know if it is possible to have sudo rules in FreeIPA for local
accounts (accounts which are in /etc/passwd) ?
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Hello,
I am using IPA version 4.8.7.
Bellow I've attached a snippet from /var/log/httpd/error_log :
[Wed Sep 01 11:36:32.899803 2021] [wsgi:error] [pid 3151741:tid
140666734245632] [remote 10.30.226.104:18475] ipa: INFO: 401 Unauthorized:
Insufficient access: Invalid credentials
[Wed Sep
re to look into or where to
check in order to fix the issue ?
Regards,
iulian roman
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Condu
Hello,
I try to run some ldapsearch queries on the compat tree from some old clients.
Unfortunately it does display only the Idm posix users, not the AD trust users.
The query I am running for a particular AD user :
ldapsearch -Y GSSAPI -h ipaserver01.ipa.example.com -b
I have tried with that one already, but unfortunately it does not resolve the
trusted AD users.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora
Hello,
I have some old clients (sssd 1.9) for which I need to use ldap provider in
sssd.conf. Does anyone know how ldap_search_base variables should look like in
order to resolve the AD users ?
With the default settings, it does resolve the posix users/groups from IPA but
not the AD users.
Hi,
The sssd client is 1.9.4 (SUSE Linux Enterprise Server 11) , but there is not
sssd-ipa package, therefore I need to configure ldap provider in sssd.conf.
I checked that link before, but I think the views subtree is no longer
accessible with anonymous bind, therefore I need somehow to
Hello,
I try to configure some old sssd clients to connect to IPA server which does
use AD and views. Is there any documentation which points which ldap_* related
variables needs to be configured in sssd,conf in order to be able to query the
views in IPA server ?
Currently I can run
Hello ,
I try to enrol some old linux clients (sssd 1.9.4) to ipaserver using the
settings as mentioned in ipa-advise. I used ldap provider in sssd and I can
query the accounts defined in ipa server but not the Active Directory accounts
. I use AD trust and views in IPA, therefore the
Hello ,
I try to enrol some old linux clients (sssd 1.9.4) to ipaserver using the
settings as mentioned in ipa-advise. I used ldap provider in sssd and I can
query the accounts defined in ipa server but not the Active Directory accounts
. I use AD trust and views in IPA, therefore the
Hi Florence,
Thank you for clarification. I have indeed the Default Trust View empty (I was
confused by the statement in the doc link , because it mentions that "Default
Trust View is always applied to ad users", without mentioning if it can be
empty or not and override done only for some
Hi Florence,
By the "override only for a set of servers" I meant the Idm clients, not the
servers.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
I have a similar setup with the same issue which I tried to solve/troubleshoot
for months without success. I have opened as well few threads on this list and
sssd list. The funny part starts with sssd 2.2 , where even the uid override
which used to work on sssd 1.6 does not work anymore .
The
Hello,
I would like to do an override only for a set of servers , therefore not in the
Default Trust View. I have created another view, where I added only the servers
for which I want to do the override and the users + UIDs which I need to
override. The Default Trust View is therefore empty.
Hello everybody,
In an Idm setup with replica and AD trust , I noticed that on few clients only
some of the groups are resolved to names (on the IPA servers they are
correctly resolved) . If I remove caches on IPA server, remove the cache in
/var/lib/sss/db , I make it eventually work,
I have done some more investigations and with the debugging enabled, I can see
the following errors in the sssd_ipa.example.com.log on the IPA server (when I
run id from an IPA client) :
2021-07-15 16:33:34): [be[ipa.example.com]] [sdap_get_generic_op_finished]
(0x0400): Search result:
Hello,
I have an issue with the group override on the IPA server. When I run the id
command it does display all the group members , but for the primary GID which
is overwritten it does not display the name, only the ID.
- groups userid
groups: cannot find name for group ID 20309 ( but it
Indeed, one of the replica had a duplicate nameAlias in the cache. I removed
it and it looks ok now. Thank you for the hint.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Hello everybody,
In the client logs I get the error bellow when querying AD users:
[ipa_s2n_exop_done] (0x0040): ldap_extended_operation result: Time limit
exceeded(3), (null).
(Tue Jul 13 10:47:46 2021) [sssd[be[ipa.example.com]]] [ipa_s2n_exop_done]
(0x0040): ldap_extended_operation failed,
Hello,
I see the following error in the sssd_nss logs on the IPA server:
[nss] [cache_req_common_get_acct_domain_recv] (0x0080): CR #2: Could not get
account domain [1432158301]: GetAccountDomain() not supported
That seems to be related to the error bellow , which I get when running groups
> On pe, 09 heinä 2021, iulian roman via FreeIPA-users wrote:
>
> I think you have misunderstood what the documentation is saying.
>
yes, probably I misunderstood the statement from the doc:
"The Default Trust View is always applied to IdM servers and replicas as well
as to AD
Thanks for the links. According to the document , override for AD users can
happen only in Default Trust View, therefore I cannot have the second
host-based view defined. In this case it is absolutely impossible to make the
override for AD users work for both SSSD versions.
Hello,
Due to the fact that I have some issues with ID views and different sssd
versions, I tried a different approach. I created a second ID view , where I do
override some users only for a group of systems. The override in the second id
view (both for users and groups) is different that the
I try to reanimate this thread, hopefully someone will be willing to spare some
time and help with it. I have done some more tests, and it seems that override
of AD users in sssd 2.2.3 does not work as expected. I do not know if it is a
bug or works as expected, but as I mentioned several
Thank you Rob! That was it. I've added all attributes which were denied in the
logs and now it works properly.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Yes, I would like to grant anonymous access . I did not get exactly how and
where the objectclass needs to be added. I tried as filter, but that does not
work either. Do you have an example how the rule should look like ?
___
FreeIPA-users mailing
After enabling the debug , in the logs I see access denied:
[07/Jul/2021:09:27:58.612128660 +0200] - DEBUG - NSACLPlugin -
print_access_control_summary - conn=11 op=1 (main): Deny search on
entry(cn=oradev1,cn=oraclecontext,dc=ipadev,dc=example,dc=com).attr(objectClass)
to anonymous: no aci
Hi,
Bellow I attached the output from a non-anonymous bind :
# extended LDIF
#
# LDAPv3
# base with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# OracleContext, ipadev.example.com
dn: cn=OracleContext,dc=ipadev,dc=example,dc=com
objectClass: orclContext
objectClass: top
cn:
Hello,
I tried to grant read/search access to a specific subtree in IPA for anonymous
bind. The ipa permission-add command completed successfully, but when I try
ldapsearch it does not display any objects.
ipa permission-show 'read oracle context'
Permission name: read oracle context
> Am Wed, Jun 30, 2021 at 07:39:44PM - schrieb iulian roman via
> FreeIPA-users:
>
> Hi,
>
> maybe there is some unexpected interaction with the code which
> automatically handles user private groups and the manual creation of a
> user private group with the id-
I do not use ldap_group_name in IPA. I'll describe bellow an example for an
override , because probably it all has to do with the 'sAMAccountName' :
Example of user and group in AD:
user: testuser - AD name 'testuser' - AD 'sAMAccountName' 'testuser' -
uidNumber:23634 gidNumber:23634
Hi Sumit,
Thank you for the answer. In that case probably I am in the right direction for
finding the issue with the overrides:
In AD , the 'User logon name (pre-Windows 2000)' and 'Group name (pre-Windows
2000)' are the corespondent of 'sAMAccountName' . 'sAMAccountName' should be
unique
Hello everybody,
Can anyone explain which attribute is used to lookup/resolve group names in AD
? As far as I can see on my ipa clients, it seems to use sAMAccountName . Is
that correct ?
___
FreeIPA-users mailing list --
Hi,
> Hi,
>
> On Fri, Jun 25, 2021 at 5:27 PM iulian roman via FreeIPA-users
>
> There are cases where you need to run "sss_cache -E" on the server as
> well. That might be it.
>
I run it as well on both IPA servers , restarted sssd, sss_cache -u , etc
Hello everybody,
I try to make the above combination to work in my environment , and already
spent several weeks + open a few threads with different sort of issues. So far,
I can say that it works only with workarounds , restarts, clear caches, etc ,
which is not the setup I can move in
Hi Florence,
I removed the files in that location , although sss_cache -E seems to do that
as well. The behaviour hasn't changed unfortunately.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Hello,
I tried for some time to understand how the cache invalidation works on the
clients, and I have to admit that I am even more confused that when I started,
therefore I would like to ask if there is someone who can either explain or
point me to the relevant documentation.
I'll describe
quick update regarding the GID override. If I override the GID (and the group
name does not exist in AD for that GID) , I can make the sssd client (both
versions) work ONLY if i run manually getent group . I cannot do
that for hundred of users and thousand of servers (especially when the
Hi Summit,
Initially I tried to override both the uid and gid of the active directory
users in the Default Trust View. Due to the fact that I did not have a group
name for the GID in Active Directory I had to remove the GID override . All
works properly with sssd client version 1.16.1 and
> Am Fri, Jun 18, 2021 at 01:16:30PM - schrieb iulian roman:
>
> Hi,
>
> if you do not want to send them here, feel free to send them to me
> directly.
>
Hi Sumit,
I have sent the logs to your email. They were quite big to attach here.
&g
Where can I upload the logs?
___
sssd-users mailing list -- sssd-users@lists.fedorahosted.org
To unsubscribe send an email to sssd-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
I forgot to mention that on the Idm Server (version 4.8.7) and sssd 2.4.0 the
getent and id queries work, not matter how and what I override in the Default
Trust View.
___
sssd-users mailing list -- sssd-users@lists.fedorahosted.org
To unsubscribe
Hi Sumit,
Thank you for the answer. The same setup works without issues on all Ubuntu
18.04 systems with sssd 1.16.1. I overwrite only the UID and the primary gid is
generated automatically by IPA (a long number).
The problem is with the Ubuntu 20 and sssd 2.2.3 , therefore I cannot enrol any
Hello everybody,
I have an issue with listing the AD users part of Default Trust View (all
users have the uid overriden ) from an ipa client which is running sssd 2.2.3.
The same setup works properly on Ubuntu systems with sssd 1.16.1 and Idm
servers with sssd version 2.4.0. I have enabled
Hello everybody,
I have an issue with listing the AD users part of Default Trust View (all
users have the uid overriden ) from an ipa client which is running sssd 2.2.3.
The same setup works properly on Ubuntu systems with sssd 1.16.1 and Idm
servers with sssd version 2.4.0. I have enabled
I have attached some sssd logs snippets with debug_level activated in
sssd.conf (some lines have been truncated) :
(Tue Jun 15 16:09:02 2021) [be[ipa.example.com]] [dp_get_account_info_send]
(0x0200): Got request for [0x1][BE_REQ_USER][name=test_u...@example.com]
(Tue Jun 15 16:09:02 2021)
Hi Sumit,
I do not override the primary gid (because I had this issue before and per your
advise I removed the gid override) , only the UID. The same setup works with
the older sssd version, as I mentioned and that's why i thought that something
might have changed in sssd.
Hello everybody,
I have an IPA setup with AD trust configured and Trust View defined on the IPA
server. Everything works properly on Ubuntu 18 clients with sssd 1.16.1 but it
doesn't on Ubuntu 20 with sssd version 2.2.3. I can list /query the AD accounts
which are not part of the default
Hi Rafael ,
Thank you for the update. I use ansible-freeipa-0.3.2-2.el8.noarch and the
issue seems to be present.
Best Regards,
iulian roman
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email
I have added the full chain in /var/lib/ipa/certs but I do not know if that is
the correct way.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora
Hello everybody,
I do not know if this is the right place to mentioned, but maybe there will be
someone who can redirect me to the right list or support channel.
On RHEL 8.3 , the latest python3-ipaserver package
(python3-ipaserver-4.9.2-3.module+el8.4.0+10412+5ecb5b37) does not contain the
Hello everybody,
I tried to change the WEB UI certificate with a custom certificate signed by
our internal CA. The custom certificate was provided as a bundle (certificate +
intermediates). The root ca which signs the intermediate was added in the
truststore with ipa-cacert-manage.
On Tue, May 18, 2021 at 11:59 AM Adrian Sevcenco
wrote:
> On 5/17/21 9:11 PM, Iulian Roman wrote:
> > Salut,
> Salutare!
>
> > Am un setup in care /home folder e intr-un NFS share. Vreau sa migrez
> > vechiul ldap la FreeIPA/IdM cu AD trust si cu aceasta ocazie as vrea
On Mon, May 17, 2021 at 11:04 PM Catalin Muresan
wrote:
> On Mon, 17 May 2021 at 19:12, Iulian Roman wrote:
>
> > Salut,
> >
> > Am un setup in care /home folder e intr-un NFS share. Vreau sa migrez
> > vechiul ldap la FreeIPA/IdM cu AD trust si cu aceasta ocazi
Salut,
Am un setup in care /home folder e intr-un NFS share. Vreau sa migrez
vechiul ldap la FreeIPA/IdM cu AD trust si cu aceasta ocazie as vrea sa
renunt la NFS share pentru /home.
Deoarece pina acum nu am folosit NFS pentru /home in nici un setup (deci
s-ar putea ca opinia mea sa fie biassed)
Public bug reported:
After enabling the debug symbols packages and installing zim-tools-
dbgysm with `sudo apt-get install zim-tools-dbgsym`, the binaries are
still stripped (tested with `file $(which zimbench)`).
I also tried installing all the dependencies with `find-dbgsym-
packages`, but to
I think the very strange behaviour was due to the fact that I did not have a
name for the gid in AD . As a workaround, I removed the gid from override (and
let IPA generate one) . The interesting part was that getent did assign the
username to the respective gid (therefore both getent group
Hello ,
I would like to know how is the primary group id calculated for trusted users
from AD. For example, all users in AD have primary group 'domain users' . I
see on the IPA side that the gid is different for all users who have primary
group 'domain users' in AD . Is the algorithm
> Am Wed, May 12, 2021 at 06:46:29AM - schrieb iulian roman via
> FreeIPA-users:
>
> Hi,
>
> did you use the IPA 'unix_users' group as primary group for those users
> and given the GID of 'unix_users' in the id-overrides for the users? Or
> did you you a differen
> Am Tue, May 11, 2021 at 03:09:54PM - schrieb iulian roman via
> FreeIPA-users:
>
> Hi,
>
> can you give some more details about the group, where it comes from IPA
> or AD, and the GID, it is the original GID of the group or coming from
> an id-override as well?
Hi,
There is indeed a mapping of ad groups to IdM posix groups.
On Tuesday, May 11, 2021, 5:31 PM, John Desantis wrote:
Iulian,
> So, only after I run getent group on the ipa clients I can list
> the user attributes.
This sounds somewhat similar to behavior I ran into initially
That was a good hint ! Actually it does return the gid when I run getent group
. And after I run the getent group on the client
side, I can run as well id . So, only after I run getent group
on the ipa clients I can list the user attributes.
Any idea what needs to be changed in order to
Hello everybody,
I try to override some uid and gid for AD users in Idm (I added all users for
which I need to override attributes in Default Trust View) and although
everything works properly on both IdM server and replica, I cannot query the
users on the ipa clients. Any other users (which
Thank you for the clear explanation Sumit. I thought i can avoid id-override
(for some issues which I will highlight on a new thread) , but I'll try to
configure and see how reliable it will be in my environment.
___
FreeIPA-users mailing list --
Yes, it is correct and this is exactly what I observed in the tests (if
ipa-ad-trust-posix is not mentioned, the uidNumber and gidNumber are ignored)
and the one within the range is generated.
The situation I have in AD is a "mix" of users without those attributes and
with. If I configure the
Is there any method to "filter" or mask some Active Directory groups in order
to speed up the lookup/search in AD ? For example I am interested only on few
groups (max. 10) and all the rules will be based on those groups. I do not want
to display all hundreds of groups a user is member of, but
> On pe, 30 huhti 2021, iulian roman via FreeIPA-users wrote:
>
> Correct -- in any DNS domain owned by your IPA deployment.
>
> It is unfortunate that there is a confusion between AD domain and DNS
> domain terminology-wise. AD domain may "own" several DNS domai
> On to, 29 huhti 2021, iulian roman via FreeIPA-users wrote:
>
> First, to make it clear. You should not have IPA servers (replicas) in
> .example.local. If you'd do, this is unsupported configuration and any
> bugs you'd see there are your own problems. There is simply no w
I have setup an Idm environment with replica and AD trust. I have the following
realms and domains:
IPADEV.EXAMPLE.LOCAL is the IPA realm with the domain ipadev.example.local
EXAMPLE.LOCAL is the AD realm with dns domain example.local
All the clients have the DNS domain example.local and
I am using a Idm setup which has AD trust configured.
IPADEV.EXAMPLE.LOCAL is the IPA realm
EXAMPLE.LOCAL is the AD realm
I can ssh to both ipa servers with AD credentials , but cannot ssh to the ipa
clients. I have enabled debug for almost all services in sssd and the only one
which
That was it Sumit ! Thank You !
I need to check if that needs to be corrected on all the clients after the
client enrolment.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
I checked /etc/krb5.conf and it is mapped. I have tried as well the bellow
scenario, which might help in troubleshooting:
- If i configure trust with a different AD domain (the one created for test,
with only one DC behind AD domain) , the same IPA domain works properly. The
only difference
I have an IPA setup with replica which has trust configured with an Active
Directory domain. The trust has been configured and it does show correctly
when listed, but users cannot authenticate against Active Directory. The only
error I see (on IPA server sssd logs) after I enabled debugging
Hello,
Stupid questions:
What version of OS do you have? pyzor is compiled on install(ex: Gentoo)
or comes pre-compiled ?
Did you made any python upgrade lately ? All the modules have been
upgraded as well ?
Did you tried to remove it and install it again ?
Best regards,
Iulian Stan
Hello,
I would like to extend the ldap schema in order to get rid of tnsnames.ora and
use ldap for that. I try to update the schema using ipa-ldap-updater, but so
far no success. Can anybody point what would be the correct update file I
should create for the schema file bellow (this is
Thank you Alexander. I'll probably not use containers for now, and migrate it
later, when it is supported/tested.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to
Hello,
Can anyone confirm if RedHat IDM is supported/recommended to run in
containers in a production environment ? I would like to know if there are any
drawbacks before I'll put any effort in implementing it. I would like to use
it with one replica and trust with Active Directory.
> On 10 Apr 2021, at 11:50, Petru Rațiu wrote:
>
> Bun, mai incerc o data. Daca alegi sa folosesti un proxy, ar trebui sa stii
> de ce. Poate reteaua in care esti nu are acces direct la internet decat asa
> sau poate vrei sa accesezi serverul cu pricina de la alt IP. Sau poate
> cineva rau
> On 10 Apr 2021, at 11:04, Petru Rațiu wrote:
>
> On Sat, Apr 10, 2021 at 10:35 AM Iulian Roman
> wrote:
>
>>
>>
>>> wget tine cont de schema
>>> url-ului de conectare si verifica daca exista setare de proxy pentru
>>> protoco
1 - 100 of 4818 matches
Mail list logo
