Am Tue, May 17, 2022 at 01:32:15PM - schrieb Bayo A via FreeIPA-users:
> Hi Rob,
>
> The error Client 'host/xxx@XXX' not found in Kerberos
> database" which I'm also having in my environment.
>
> My IPA and AD realms use the same name however I'm not using DNS in my
> implementation as well.
Hi Rob,
The error Client 'host/xxx@XXX' not found in Kerberos
database" which I'm also having in my environment.
My IPA and AD realms use the same name however I'm not using DNS in my
implementation as well. The records of both the client and IPA-server are
contained in the host file of the ser
Bayo A via FreeIPA-users wrote:
> Hello,
>
> I have a similar issue with one of the clients configured in my environment.
> I used the hosts file of the linux and unix servers for name resolution as I
> didn't want to create an additional DNS server since there's a primary DNS on
> windows with
Hello,
I have a similar issue with one of the clients configured in my environment.
I used the hosts file of the linux and unix servers for name resolution as I
didn't want to create an additional DNS server since there's a primary DNS on
windows with AD configured.
What steps can I use to resol
Am Mon, May 16, 2022 at 01:20:27PM - schrieb Damola Azeez via FreeIPA-users:
> What if i use the host file for name resolution?
Hi,
this would not be sufficient. With careful manual configuration in
multiple configuration files you might be able to get some features
working. But this would st
What if i use the host file for name resolution?
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-U
On pe, 13 touko 2022, Damola Azeez via FreeIPA-users wrote:
Hi Sumit,
Yes, Same domain.
So you have unsupported configuration which is clearly described in RHEL
IdM documentation as well as at
https://www.freeipa.org/page/Deployment_Recommendations:
--
Hi Sumit,
Yes, Same domain.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-co
Am Thu, May 12, 2022 at 09:58:40AM - schrieb Damola Azeez via FreeIPA-users:
> From the dig -t SRV _kerberos._tcp.xxx output,
>
> 192.168.101.160 which is the IPA server didn't show. The other 3 IP addresses
> showed up. Those 3 IP addresses act as the DNS server and AD server for the
> Wind
From the dig -t SRV _kerberos._tcp.xxx output,
192.168.101.160 which is the IPA server didn't show. The other 3 IP addresses
showed up. Those 3 IP addresses act as the DNS server and AD server for the
Windows environment.
___
FreeIPA-users mailing list
Am Wed, May 11, 2022 at 03:10:06PM - schrieb Damola Azeez via FreeIPA-users:
> Hi Sumit, Thanks for the assistance.
>
> Please find the ldap_child.log file in the link below
>
> https://pastebin.com/pKp1tvCt
Hi,
thanks for the log. It looks like the KDC with the IP address
192.168.101.160 k
Hi Sumit, Thanks for the assistance.
Please find the ldap_child.log file in the link below
https://pastebin.com/pKp1tvCt
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fed
Am Wed, May 11, 2022 at 02:19:23PM - schrieb Damola Azeez via FreeIPA-users:
> Hi,
>
> The above should be done on the IPA client right?
Hi,
yes.
bye,
Sumit
> ___
> FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
> To unsubscri
Hi,
The above should be done on the IPA client right?
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.or
Am Wed, May 11, 2022 at 12:14:56PM - schrieb Damola Azeez via FreeIPA-users:
> Hi,
>
> Output below
Hi,
thanks, so this is working as expected, SSSD's ldap_child basically does
the same. Can you add 'debug_level = 9' to the [domain/...] section of
sssd.conf, restart SSSD, try to lookup some
Hi,
Output below
KRB5_TRACE=/dev/stdout kinit -k 'host/epmtestapp.xxx@XXX'
[90987] 1652261211.989907: Getting initial credentials for
host/epmtestapp.xxx@XXX
[90987] 1652261211.990289: Looked up etypes in keytab: aes256-cts, aes128-cts
[90987] 1652261211.990325: Sending request (219 bytes) to XX
Am Wed, May 11, 2022 at 08:47:49AM - schrieb Damola Azeez via FreeIPA-users:
> Hi,
>
> below is the output of ipa host-show epmtestapp
>
>
> Host name: epmtestapp.xxx
> Platform: x86_64
> Operating system: 4.1.12-124.16.4.el6uek.x86_64
> Certificate: ---
> Subject: CN=epmtestapp.xxx,
Hi,
below is the output of ipa host-show epmtestapp
Host name: epmtestapp.xxx
Platform: x86_64
Operating system: 4.1.12-124.16.4.el6uek.x86_64
Certificate: ---
Subject: CN=epmtestapp.xxx,O=XXX
Serial Number: 13
Serial Number (hex): 0xD
Issuer: CN=Certificate Authority,O=XXX
Not B
Am Tue, May 10, 2022 at 03:57:19PM - schrieb Damola Azeez via FreeIPA-users:
> Output of 'klist -k'
>
> Keytab name: FILE:/etc/krb5.keytab
> KVNO Principal
>
> --
>1 host/epmtestapp.xxx@XXX
>1 host/epmtestapp
Output of 'klist -k'
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
--
1 host/epmtestapp.xxx@XXX
1 host/epmtestapp.xxx@XXX
It matches whats found in sssd.conf
"ipa_hostname = epmtestapp.xxx"
__
Am Tue, May 10, 2022 at 03:02:21PM - schrieb Damola Azeez via FreeIPA-users:
> Thanks Sumit,
>
> There isn't any hostname assignment via dhcp. I checked the sssd.conf file
> and its exactly as you recommended. i found another line of error when i
> checked the log now
Hi,
and if the hostna
Thanks Sumit,
There isn't any hostname assignment via dhcp. I checked the sssd.conf file and
its exactly as you recommended. i found another line of error when i checked
the log now
[sssd[ldap_child[70480]]]: Failed to initialize credentials using keytab
[MEMORY:/etc/krb5.keytab]: Client 'host
Am Tue, May 10, 2022 at 02:17:18PM - schrieb Damola Azeez via FreeIPA-users:
> I've installed FreeIPA on all host I manage and everything has been fine
> until today when had to reboot the whole hosts. Every other host worked
> except one. checking the log file of the server, i saw the below
23 matches
Mail list logo
