Sorry to follow-up to an old thread, but is this still true?
https://www.redhat.com/archives/freeipa-users/2015-February/msg00038.html
On Thu, Sep 19, 2019 at 9:45 AM Rob Crittenden wrote:
> Amos via FreeIPA-users wrote:
> > Is it possible to have an automember rule to add a host to a hostgrou
Hi Florence,
Thank you for your reply.
Rob had pointed me on that direction but now when I try to run the
setup-le script with that version I get the following error:
1.
ipaplatform.redhat.tasks: INFO: Systemwide CA database updated.
2.
ipalib.backend: DEBUG: Destroyed connection
cont
Ricardo Mendes via FreeIPA-users wrote:
> Ok so I don't know what happened the server really did take a long time to
> come up but it did.
>
> Everything looks pretty much the same. The setup-le.sh command I ran that
> said
>
>> The ipa-certupdate command was successful
>
> But I can't see it
Hi - I have an IPA setup (4.6.6) with a trust to AD servers. The users can
login to the servers via ssh and everything is allowed via HBAC groups.
I have some users that are admins so I created an all-servers access group.
But when I issue the "id" or "groups" command, users are reported being me
On 6/10/20 4:37 AM, Chris Carr via FreeIPA-users wrote:
We are unable to login to the FreeIPA web console. However, it is able to tell when I use
an incorrect password (shows "The password you entered is incorrect.")
Also one of the CentOS servers getting ssh login credentials from our ipa
serv
On 6/9/20 10:04 AM, Karim Bourenane via FreeIPA-users wrote:
Hello Florence, all
I have also only update ipa-*, but i have same Error. Its appears that
unable to unlink the port 8433 TCPV6 by pki-tomcat used by FreeIPA. Im
actually blocked with this minor update.
Hi,
do you mean that you ra
Ricardo Mendes wrote:
> Hi Rob,
>
> Again thanks for your reply. So I got went to the commit that lasted
> from 2017 and re-ran setup-le.sh
> Output is here:
>
> https://pastebin.com/JAaD4R21
>
> In the end I get this error:
>
> ipaplatform.redhat.tasks: INFO: Systemwide CA database updated.
>
Hi All.
We have an IPA installation in a ‘winsync’ agreement with our AD. We do not
(at this stage) want to move this to a full trust, but it would be useful for
our users if there were a trust between the two systems at the *Kerberos*
level. That way, user desktop TGTs from AD could be used
Hi Rob,
Again thanks for your reply. So I got went to the commit that lasted from 2017
and re-ran setup-le.sh
Output is here:
https://pastebin.com/JAaD4R21
In the end I get this error:
ipaplatform.redhat.tasks: INFO: Systemwide CA database updated.
ipalib.backend: DEBUG: Destroyed connection
The FreeIPA team would like to announce FreeIPA 4.8.7 release!
It can be downloaded from http://www.freeipa.org/page/Downloads. Builds
for Fedora distributions will be available from the official repository
soon.
== Highlights in 4.8.7
* 3687: [RFE] IPA user account expiry warning.
EPN sta
On 6/10/20 8:42 PM, Ricardo Mendes via FreeIPA-users wrote:
Hi Rob,
Thanks a lot for your reply.
It's because you are in the middle of an upgrade. You can add
--skip-version-check to not do the upgrade until after the certs are renewed.
Amazing! So I turned back the clock and:
# ipactl res
>I think you need to see what certs and keys are in /etc/httpd/alias.
> Sounds like there is no Server-Cert nickname.
certutil -L -d /etc/httpd/alias -f /etc/httpd/alias/pwdfile.txt
certutil -K -d /etc/httpd/alias -f /etc/httpd/alias/pwdfile.txt
This is the output, and I'm adding getcert list in
12 matches
Mail list logo