On (18/07/18 13:39), Bret Wortman via FreeIPA-users wrote:
>I've got a system (probably more than one) where I've got clients who aren't
>able to bring up SSSD due to this error, as seen in "journalctl -xe".
>
>I've tried unenrolling & re-enrolling. I've tried unenrolling, uninstalling,
>reinstalli
On (23/01/18 15:01), Eric Scholwin via FreeIPA-users wrote:
>Interesting thought, I figured something had to have changed it, but what
>would cause this to occur on my production box and not my test box? Both boxes
>needed to install the exact same packages and dependencies, but this didn't
>occ
On (17/01/18 15:15), Harald Dunkel via FreeIPA-users wrote:
>On 01/15/2018 09:04 PM, Rob Crittenden via FreeIPA-users wrote:
>>
>> That's fine but it doesn't address the original problem: he doesn't want
>> anything managing the clock on his system at all:
>>
>> "some ipa servers in my environmen
On (15/01/18 10:53), Rob Crittenden via FreeIPA-users wrote:
>Anvar Kuchkartaev via FreeIPA-users wrote:
>> If you installed freeipa service or client with option --no-ntp then it
>> won't use ntp to synchronise clock.
>>
>> If you have already ipa server with ntpd installed:
>>
>> https://www.
On (13/11/17 12:45), Florence Blanc-Renaud via FreeIPA-users wrote:
>Hi all,
>
>FreeIPA wiki contains a really long page for Troubleshooting [1], and I would
>like to re-organize the content a little bit differently.
>
+1 for the effort.
BTW it might be good to have a section with links to trouble
On (07/11/17 10:34), Sigbjorn Lie via FreeIPA-users wrote:
>Hi,
>
>I would also prefer to stop using an unsupported distribution. Unfortunately
>not all application vendors have updated their software, which prevents the
>upgrade of these machines to a newer and supported distribution.
>
For suc
On (06/11/17 16:58), Sigbjorn Lie via FreeIPA-users wrote:
>Hi list,
>
>RHEL/CentOS 5.11 clients does not seem to work with IPA 4.5 unless I go from
>sssd-ipa to sssd-ldap. I would prefer to continue to use sssd-ipa to allow the
>existing HBAC rules to function.
>
>Is there a known workaround to
On (10/10/17 12:47), Alka Murali via FreeIPA-users wrote:
>Hello Team,
>
>I have integrated my Ubuntu/Debian and CentOS Servers as IPA Clients to my
>FreeIPA Server. The custom sudo rule added by me also works for the users
>assigned to the rule.
>
>The first login attempt as well as sudo access wo
On (19/09/17 18:46), Florence Blanc-Renaud via FreeIPA-users wrote:
>On 09/18/2017 05:11 PM, Marius Bjørnstad via FreeIPA-users wrote:
>> Hi,
>>
>> When /tmp is full, it is impossible to authenticate with Kerberos. Login
>> with password over SSH and sudo don't work. Login with ssh key works fine
On (11/09/17 07:42), Igor Sever via FreeIPA-users wrote:
>Can I use FreeIPA as Kerberos and LDAP provider (not as IPA) and still use
>policies somehow?
Yes you can, but sssd-1.11.5.1 was quite broken and contained many bugs.
1.11.8 should be much better but from sssd upstream POV 1.13 is long ter
On (25/08/17 00:17), Alexander Bokovoy via FreeIPA-users wrote:
>On to, 24 elo 2017, Jakub Hrozek via FreeIPA-users wrote:
>> On Thu, Aug 24, 2017 at 08:18:42AM -0600, Kristian Petersen via
>> FreeIPA-users wrote:
>> > If you are using Samba with FreeIPA, you may want to wait to upgrade to
>> > 7.
On (11/08/17 14:17), Steve Weeks via FreeIPA-users wrote:
>We are running FreeIPA 4.4
>
>I just upgraded a system from fedora 25 to fedora 26 using dnf.
>
>The first problem is that the mkhomedir option is lost. I've reinstated it
>with:
>
>authconfig --enablemkhomedir --update
>
>The second probl
On (07/08/17 17:10), Alka Murali via FreeIPA-users wrote:
>Hello Team,
>
>Have checked all the logs, and the SSSD Logs are saying that it is
>processing the sudo rules which I have configured on my FreeIPA Server.
>However if I run sudo commands on my client, it is giving me the message
>that the u
On (07/08/17 11:08), Supratik Goswami via FreeIPA-users wrote:
>Hi
>
>I am using trust between AD and IPA
>
>AD domain: ad.corp.example.com
>IPA domain: ipa.corp.example.com
>
>I am able to login using SSH to the IPA server using the AD user, when I am
>trying to login using
>SSH to the Linux clien
On (28/07/17 15:39), Devin Acosta via FreeIPA-users wrote:
>I have noticed that when I enable FreeIPA all my CentOS 7.x boxes work via
>SSH just fine, however none of my CentOS 6 boxes work. I read that 2FA
>didn't come until CentOS 7.1. So my question is does 2FA via SSH not work
>at all if you ha
On (21/07/17 17:20), Jacquelin Charbonnel via FreeIPA-users wrote:
>Hi everybody,
>
> At now, I enroll diskless Fedora26 workstations (with stateless Linux)
> into
>my IPA domain.
> Inside the readonly root image, /etc/sysconfig/selinux points :
>
>SELINUX=disabled
>SELINUXTYPE=targete
On (17/07/17 09:54), Thomas Lau via FreeIPA-users wrote:
>docker-host# docker run --user=testaccount1 -d -p 9001:9001 e7b263ac54e2
>990c220ccb30b5012e7e5aa45f7e9345098cdb867328302daff567474055de02
>docker: Error response from daemon: linux spec user: unable to find user
>testaccount1: no matchin
On (07/06/17 10:21), Jose Alvarez R. via FreeIPA-users wrote:
>Hello
>
>
>
>A question
>
>
>
>What another way I can enroll my server client on my IPA server ?
>
>
>
>I have a server IPA with S.O. Fedora 24 and
>freeipa-server-4.3.3-1.fc24.x86_64
>
>
>
>My client server have a S.O. CentOS relea
18 matches
Mail list logo