Steve Reed via FreeIPA-users wrote:
> Hi all,
>
> I am running Versions 4.8 of the client installations. I have one machine
> that installed except it failed to configure the krb5.conf file properly and
> it fails saying that it can't find the KDC for the realm xyz.com. I can fix
> Kerberos b
Hi all,
I am running Versions 4.8 of the client installations. I have one machine that
installed except it failed to configure the krb5.conf file properly and it
fails saying that it can't find the KDC for the realm xyz.com. I can fix
Kerberos by manually editing the kfb5.conf file. Except fo
David,
> What's the difference between the two options (ipa-ad-trust vs.
> ipa-ad-trust-posix), other than the uid & gid mapping? Why would I choose 1
> over the other?
I can't speak for your environment or anyone else's for that matter,
but for us it was due to legacy concerns.
We have migrat
Yes, it is correct and this is exactly what I observed in the tests (if
ipa-ad-trust-posix is not mentioned, the uidNumber and gidNumber are ignored)
and the one within the range is generated.
The situation I have in AD is a "mix" of users without those attributes and
with. If I configure the t
I'm going to piggy back on this thread, because it is very relevant to a question I have.
What's the difference between the two options (ipa-ad-trust vs. ipa-ad-trust-posix), other than the uid & gid mapping?
Why would I choose 1 over the other?
I have always scratched my head a little bit why my
Hi,
when a trust is established with posix range type, the users need to have
uidNumber and gidNumber set on AD side.
If you want IdM to generate uid and gid, the range type has to be
ipa-ad-trust instead of ipa-ad-trust-posix but I believe the posix
attributes of the AD entries won't be taken int
I have configured a trust between IdM and Active Directory with posix range
type. The users which do have an uidNumber in AD are correctly listed, but
those without uidNumber are not (similar for the groups).
Is there any setting or possibility to have the AD users without uidNumber get
an uid
Hi Folks,
I need some hints on the following scanario:
* We have a cluster of ipa clients and an ipa server.
* There is an _ipa_ user with the name "BIGBOSS".
* There is also a machine EXT that may be connected to the cluster
for maintenance purposes, but it is not an ipa client.
Some user
