[Freeipa-users] Re: missing attribute "krbPrincipalName" required by object class "ipaKrbPrincipal"

> Brian J. Murrell via FreeIPA-users wrote: > > What is it exactly that you're doing? I am trying to re-add the previously (perhaps incompletely, as it may seem) deleted ipa server on "server.example.com": # ipa-replica-install --setup-ca --ip-address 10.75.22.247 --setup-dns --no-forwarders

[Freeipa-users] Re: Need help with confusing query results

This is the version installed: 389-ds-base-1.4.3.23-12.module+el8.5.0+722+e2a0b219.x86_64 Thanks ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora

[Freeipa-users] Re: missing attribute "krbPrincipalName" required by object class "ipaKrbPrincipal"

Brian J. Murrell via FreeIPA-users wrote: > I'm trying to add a replica but it's failing on step "[23/38]: creating DS > keytab" with: > > [error] CalledProcessError: CalledProcessError(Command > ['/usr/sbin/ipa-getkeytab', '-k', '/etc/dirsrv/ds.keytab', '-p', >

[Freeipa-users] missing attribute "krbPrincipalName" required by object class "ipaKrbPrincipal"

I'm trying to add a replica but it's failing on step "[23/38]: creating DS keytab" with: [error] CalledProcessError: CalledProcessError(Command ['/usr/sbin/ipa-getkeytab', '-k', '/etc/dirsrv/ds.keytab', '-p', 'ldap/server.example@example.com', '-H', 'ldaps://server-staging.example.com']

[Freeipa-users] Re: IPA yubikey duo

Per Qvindesland via FreeIPA-users wrote: > Hi  > > Is there any information on how to implement IPA with yubikey duo?  I > had a look and it seems straightforward enough to implement duo and > ssh https://duo.com/docs/duounix but it would be nice to be able to > manage it through ipa. What would

[Freeipa-users] IPA yubikey duo

Hi Is there any information on how to implement IPA with yubikey duo? I had a look and it seems straightforward enough to implement duo and ssh https://duo.com/docs/duounix but it would be nice to be able to manage it through ipa. Regards Per Sent from my Commodore

[Freeipa-users] Re: CA - does it make sense with globbing/wildcard

On 24/01/2022 11:13, lejeczek via FreeIPA-users wrote: On 21/01/2022 23:09, Rob Crittenden wrote: lejeczek via FreeIPA-users wrote: Hi guys I'm for the first time contemplating CA service from a public CA to subordinate IPA to it - would it make sense with a *.sub.domain cert, if such one

[Freeipa-users] Re: CA - does it make sense with globbing/wildcard

On 21/01/2022 23:09, Rob Crittenden wrote: lejeczek via FreeIPA-users wrote: Hi guys I'm for the first time contemplating CA service from a public CA to subordinate IPA to it - would it make sense with a *.sub.domain cert, if such one cert one already has from that public CA, to still want to

[Freeipa-users] Re: Some ipa user passwords did not work after update

On 24.01.22 10:38, Alexander Bokovoy wrote: On ma, 24 tammi 2022, Ronald Wimmer wrote: On 24.01.22 09:55, Alexander Bokovoy wrote: On ma, 24 tammi 2022, Ronald Wimmer wrote: On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald

[Freeipa-users] Re: Some ipa user passwords did not work after update

On ma, 24 tammi 2022, Ronald Wimmer wrote: On 24.01.22 09:55, Alexander Bokovoy wrote: On ma, 24 tammi 2022, Ronald Wimmer wrote: On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22

[Freeipa-users] Re: Some ipa user passwords did not work after update

On 24.01.22 09:55, Alexander Bokovoy via FreeIPA-users wrote: On ma, 24 tammi 2022, Ronald Wimmer wrote: On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22 09:29, Ronald Wimmer via

[Freeipa-users] Re: Some ipa user passwords did not work after update

On 24.01.22 09:55, Alexander Bokovoy wrote: On ma, 24 tammi 2022, Ronald Wimmer wrote: On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22 09:29, Ronald Wimmer via FreeIPA-users wrote:

[Freeipa-users] Re: Some ipa user passwords did not work after update

On ma, 24 tammi 2022, Ronald Wimmer wrote: On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22 09:29, Ronald Wimmer via FreeIPA-users wrote: Today the problem reappeared. I cannot login

[Freeipa-users] Re: Some ipa user passwords did not work after update

On 17.01.22 17:53, Alexander Bokovoy wrote: On ma, 17 tammi 2022, Rob Crittenden via FreeIPA-users wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22 09:29, Ronald Wimmer via FreeIPA-users wrote: Today the problem reappeared. I cannot login with the admin user.  The error message I get

[Freeipa-users] Re: Some ipa user passwords did not work after update

On 17.01.22 17:48, Rob Crittenden wrote: Ronald Wimmer via FreeIPA-users wrote: On 13.01.22 09:29, Ronald Wimmer via FreeIPA-users wrote: Today the problem reappeared. I cannot login with the admin user.  The error message I get is "The password or username you entered is incorrect". kinit

[Freeipa-users] Re: Need help with confusing query results

Hi, I'm not able to reproduce the issue on fedora 35: # ldapsearch -LLL -H ldap://`hostname`:389 -x -D cn=directory\ manager -w Secret123 -b cn=users,cn=accounts,dc=ipa,dc=test -s sub "(&(objectClass=inetOrgPerson)(uid=testuser1))" uid entryUUID dn: