Hi,
upfront: please don't judge our setup. I know that the concept is an issue
:-(
I have two freeipa servers which are running on an old operating system
(Fedora26) and I want to migrate it to centos8.
Because there are not enough resources in our mgmt cluster I need to shut
one of them down and
Hi,
On Wed, Aug 5, 2020 at 1:34 PM Boris Behrens via FreeIPA-users
wrote:
>
> Hi,
>
> upfront: please don't judge our setup. I know that the concept is an issue :-(
>
> I have two freeipa servers which are running on an old operating system
> (Fedora26) and I want to migrate it to centos8.
Are
Hello François,
thank you for your answer. As you may have guessed I am very new to
freeIPA, so please don't get annoyed. If you point me to the documentation
for a topic I can begin to work with that.
Am Mi., 5. Aug. 2020 um 13:49 Uhr schrieb François Cami :
> Hi,
>
> On Wed, Aug 5, 2020 at 1:34
Hi,
I already found a few threads with people with the similar issue but i was not
able to find one pointing to the right solution. Maybe someone can give me a
direction in case there is one that i overlooked:
We run a Datacenter with lots of vlans and different networks. Each network has
a di
On Mon, Jul 13, 2020 at 12:35:28PM +0100, Dominik Vogt via FreeIPA-users wrote:
> On Fri, Jul 10, 2020 at 05:29:16PM +0200, Sumit Bose via FreeIPA-users wrote:
> > On Thu, Jul 09, 2020 at 04:56:21PM +0100, Dominik Vogt via FreeIPA-users
> > wrote:
> > > We have a freeipa server and some clients.
Hi Boris,
On Wed, Aug 5, 2020 at 2:16 PM Boris Behrens via FreeIPA-users
wrote:
>
> Hello François,
> thank you for your answer. As you may have guessed I am very new to freeIPA,
> so please don't get annoyed. If you point me to the documentation for a topic
> I can begin to work with that.
Do
Victor via FreeIPA-users wrote:
> Hello,
>
> Everything is set up on the same machine as described here:
> https://www.freeipa.org/page/Using_FreeIPA_and_FreeRadius_as_a_RADIUS_based_software_token_OTP_system_with_CentOS/RedHat_7
>
> I'm trying to check whether a user belongs to a group or not:
>
Fujisan via FreeIPA-users wrote:
> I ran 'ipactl status'
> -
> # ipactl status
> Directory Service: RUNNING
> krb5kdc Service: RUNNING
> kadmin Service: RUNNING
> named Service: RUNNING
> httpd Service: RUNNING
> ipa-custodia Service: RUNNING
> pki-tomcatd Service: STOPPED
>
Nothing expires this year.
# getcert list | grep expires
expires: 2021-04-16 16:12:39 CEST
expires: 2021-01-30 16:03:43 CET
expires: 2021-01-30 16:03:43 CET
expires: 2021-01-30 16:03:43 CET
expires: 2039-02-10 16:03:42 CET
expires: 2021-04-05 16:11:3
Thanks much for the assistance. Here is where I am with your suggestions:
1) Checked on the cert with "certutil -L -d /etc/pki/pki-tomcat/alias -n
'Server-Cert cert-pki-ca' and I see that the Validity is indeed old (almost a
year old actually, I assume IPA only checks it when it first starts up
10 matches
Mail list logo
