On 02/03/2012 03:01 AM, Dale Macartney wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Craig
I am actually working on this very thing at the moment.
there is a very basic config here
(http://freeipa.org/page/Dovecot_Integration), however this is using pam
for everything
The end goal
On 02/03/2012 03:43 AM, Natxo Asenjo wrote:
further you do not need to have the Maildirs on the users' homedirs:
http://wiki.dovecot.org/Authentication/Kerberos
If you only want to use Kerberos ticket-based authentication:
auth default {
mechanisms = gssapi
userdb static {
args = u
I don't think you have to put it anywhere, the ipa.getkeytab mainly sets
the workstation password in freeipa. I keep the client keytabs in /etc
(krb5.keytab.[clientname].)
I have many Win7 and WinXP workstations authenticating but I'm still
working on getting user/password sync working.
Jimmy
On
On 02/06/2012 11:31 AM, Jimmy wrote:
> I don't think you have to put it anywhere, the ipa.getkeytab mainly
> sets the workstation password in freeipa. I keep the client keytabs in
> /etc (krb5.keytab.[clientname].)
>
> I have many Win7 and WinXP workstations authenticating but I'm still
> working o
I am not making the windows systems part of an AD. I only need to replicate
users from an AD group to FreeIPA and I've had issues making that work. I
was working on that with a couple guys here on the list a couple weeks ago
but have been traveling so it's been hard to make time to work on that.
I
Hi,
Trying to get my head around theseis it possible to create a group
administrator say "engineering team administrator" and have that role only
able to add specific users (how to specify?) to specific user groups (say) ie I
want to be able to delegate responsibility for limited groups an
Once these actions are carried out does that mean the webgui is active? is is
there any other actions needed to make the promoted replica the new read/write
master?
regards
Steven Jones
Technical Specialist - Linux RHCE
Victoria University, Wellington, NZ
0064 4 463 6272
__
Steven Jones wrote:
Hi,
Trying to get my head around theseis it possible to create a group administrator say
"engineering team administrator" and have that role only able to add specific
users (how to specify?) to specific user groups (say) ie I want to be able to delegate
responsibility
Steven Jones wrote:
Once these actions are carried out does that mean the webgui is active? is is
there any other actions needed to make the promoted replica the new read/write
master?
Promoting a replica is only necessary if you installed with a selfsign
CA and want to issue certs from tha