[Freeipa-users] Re: cannot create PTR record - too many address components

On to, 17 loka 2019, Stephen Ingram via FreeIPA-users wrote: I'm trying to setup service discovery for our printers on the network using a CUPS bonjour tutorial. Specifically the record I'm trying to create is: _ipp._tcp PTR m477fdw._ipp._tcp.i.example.com. Every time I try to create this r

[Freeipa-users] Re: Windows clients and domain_realm mappings

On pe, 18 loka 2019, Pieter Baele wrote: All Windows clients are properly enrolled into the AD domain. We can't use two-way trust because of reasons you explained here before. A one-way external trust is used. All perfectly established and working, but somehow windows clients don't follow the to

[Freeipa-users] Re: SSH Hostbased Authentication with FreeIPA

On 18 Oct 2019, at 03:20, Sumit Bose mailto:sb...@redhat.com>> wrote: On Fri, Oct 18, 2019 at 05:57:40AM +, Vinícius Ferrão wrote: On 17 Oct 2019, at 03:52, Sumit Bose mailto:sb...@redhat.com>> wrote: On Thu, Oct 17, 2019 at 04:32:05AM +, Vinícius Ferrão wro

[Freeipa-users] Re: SSH Hostbased Authentication with FreeIPA

On Fri, Oct 18, 2019 at 05:57:40AM +, Vinícius Ferrão wrote: > > > On 17 Oct 2019, at 03:52, Sumit Bose > mailto:sb...@redhat.com>> wrote: > > On Thu, Oct 17, 2019 at 04:32:05AM +, Vinícius Ferrão wrote: > > > On 16 Oct 2019, at 16:01, Rob Crittenden > mailto:rcrit...@redhat.com>

[Freeipa-users] Re: SSH Hostbased Authentication with FreeIPA

On 17 Oct 2019, at 03:52, Sumit Bose mailto:sb...@redhat.com>> wrote: On Thu, Oct 17, 2019 at 04:32:05AM +, Vinícius Ferrão wrote: On 16 Oct 2019, at 16:01, Rob Crittenden mailto:rcrit...@redhat.com>> wrote: Vinícius Ferrão wrote: On 15 Oct 2019, at 17:49,

[Freeipa-users] Re: Windows clients and domain_realm mappings

All Windows clients are properly enrolled into the AD domain. We can't use two-way trust because of reasons you explained here before. A one-way external trust is used. All perfectly established and working, but somehow windows clients don't follow the topology. By adding a domain_realm mapping t

[Freeipa-users] cannot create PTR record - too many address components

I'm trying to setup service discovery for our printers on the network using a CUPS bonjour tutorial. Specifically the record I'm trying to create is: _ipp._tcp PTR m477fdw._ipp._tcp.i.example.com. Every time I try to create this record in IPA I receive the error message: Invalid 'ptrrecord':

[Freeipa-users] Re: autofs debugging

Hi, Can you share the automount entries you've added on the IPA server side? IIRC if you do these wrong or in the wrong order the client won't pick them up. Best would be to show the resulting entries from LDAP. Cheers François On Thu, Oct 17, 2019 at 9:16 PM danielle lampert via FreeIPA-us

[Freeipa-users] Re: FreeIPA new network with DNS

My guess is that you have the domain "intra.example.com" listed in the "search" order found in /etc/resolv.conf on server ipa1 but not on server mahavishnu. Regards Angus From: Jason Dunham via FreeIPA-users Sent: Thursday, 17 October 2019, 20:31 To: freeipa-us

[Freeipa-users] Re: autofs debugging

Hello, some more info, if anyone understands what I did wrong.. I'm stucked for 2 weeks already I have one ipa server (idm1) which also serves NFS, and one ipa client (idm2) Here are the logs when running automount with --dumpmaps and -df # automount --dumpmaps autofs dump map information

[Freeipa-users] Re: FreeIPA new network with DNS

Okay I am making some progress with this, currently just trying to get one server running before I add any failover. Thanks for the help so far. Currently the freeipa server "ipa1" (ipa1.intra.example.com) seems to be working it can resolve hosts on the LAN either with a short hostname or a fqdn