On 05/24/2013 05:48 PM, Nalin Dahyabhai wrote:
> On Fri, May 24, 2013 at 12:01:04PM +0200, Sigbjorn Lie wrote:
>> The compat module would have to be extended to support displaying selected
>> automount maps from one
>> location in a different location. I do not know the internals of the compat
>>
On Fri, May 24, 2013 at 12:01:04PM +0200, Sigbjorn Lie wrote:
> The compat module would have to be extended to support displaying selected
> automount maps from one
> location in a different location. I do not know the internals of the compat
> plugin so what I'm
> asking might be unable/hard to
On 05/24/2013 01:32 PM, Loris Santamaria wrote:
> That tool would be great!
>
> For now if you are in a hurry you could dump your current domain to with
> db2ldif, change suffixes, domain name, realm name on the ldif file the
> load what you need on the new domain with ldapadd. Some extra advice:
>
John Moyer wrote:
So I did that, and it executed perfectly (went back and checked that it did
indeed replace the value as expected). I got on the machine I was trying to
add and got this:
root@ ~]# ipa-client-install --domain=example.com --server=server.example.com
--realm=EXAMPLE.COM -p bui
So I did that, and it executed perfectly (went back and checked that it did
indeed replace the value as expected). I got on the machine I was trying to
add and got this:
root@ ~]# ipa-client-install --domain=example.com --server=server.example.com
--realm=EXAMPLE.COM -p builduser -w "BLAH" -U
John Moyer wrote:
So unfortunately a rebuild would be less than optimal for me, lots of servers
and users. So I've tried Dmitri's idea of ldapi and I got the access to LDAP
now, however I may be going about this entire thing wrong. I created an LDIF
file that looks like this:
dn: cn=cacert
So unfortunately a rebuild would be less than optimal for me, lots of servers
and users. So I've tried Dmitri's idea of ldapi and I got the access to LDAP
now, however I may be going about this entire thing wrong. I created an LDIF
file that looks like this:
dn: cn=cacert,cn=ipa,cn=etc,dc=e
That tool would be great!
For now if you are in a hurry you could dump your current domain to with
db2ldif, change suffixes, domain name, realm name on the ldif file the
load what you need on the new domain with ldapadd. Some extra advice:
- AFAIK you can't migrate kerberos keys, so just keep th
On Fri, 2013-05-24 at 10:17 +0300, Alexander Bokovoy wrote:
> On Thu, 23 May 2013, Dean Hunter wrote:
> >On Thu, 2013-05-23 at 13:22 -0400, Rob Crittenden wrote:
> >> Dean Hunter wrote:
> >> > On Thu, 2013-05-23 at 17:58 +0200, Martin Kosek wrote:
> >> >>
> >> >> # koji download-build freeipa-3.2.0
Sigbjorn Lie wrote:
Me too. +1 for ipa to ipa migration.
I filed a ticket to track this, https://fedorahosted.org/freeipa/ticket/3656
rob
Martin Kosek wrote:
On 05/24/2013 03:34 PM, Simo Sorce wrote:
On Fri, 2013-05-24 at 07:44 -0400, Ainsworth, Thomas wrote:
Greetings,
I was told to
Me too. +1 for ipa to ipa migration.
Martin Kosek wrote:
>On 05/24/2013 03:34 PM, Simo Sorce wrote:
>> On Fri, 2013-05-24 at 07:44 -0400, Ainsworth, Thomas wrote:
>>> Greetings,
>>>
>>> I was told to bring my issue to this distribution.
>>>
>>> Six months or so ago I was tasked with setting up
Fellows,
That capability would be awesome! Just what I need...
Let me know if it is possible and what kind of time frame you expect it to
happen...
Thanks,
Tom
On Fri, May 24, 2013 at 10:18 AM, Martin Kosek wrote:
> On 05/24/2013 03:34 PM, Simo Sorce wrote:
> > On Fri, 2013-05-24 at 07:44 -
On Fri, 2013-05-24 at 16:18 +0200, Martin Kosek wrote:
> On 05/24/2013 03:34 PM, Simo Sorce wrote:
> > On Fri, 2013-05-24 at 07:44 -0400, Ainsworth, Thomas wrote:
> >> Greetings,
> >>
> >> I was told to bring my issue to this distribution.
> >>
> >> Six months or so ago I was tasked with setting up
On Fri, May 24, 2013 at 4:18 PM, Martin Kosek wrote:
>
> Simo, on a side note - I am thinking, would it make sense to create a new
> command "ipa migrate-ipa" which would migrate data from other IPA
> installation?
> I.e. it would migrate users, groups, hosts, sudo, hbac, automount, etc?
>
> I ca
On Friday, May 24, 2013 04:18:20 PM Martin Kosek wrote:
> > I would look at the migration pages. You can probably use migration mode
> > to migrate user data from one FreeIPa install to the other and then the
> > migration mode of sssd to validate and recompute the kerberos keys.
> >
> >
> >
> >
On 05/24/2013 03:34 PM, Simo Sorce wrote:
> On Fri, 2013-05-24 at 07:44 -0400, Ainsworth, Thomas wrote:
>> Greetings,
>>
>> I was told to bring my issue to this distribution.
>>
>> Six months or so ago I was tasked with setting up a Kerberos/LDAP
>> Authentication server. After a
>> month of head
On Fri, 2013-05-24 at 07:44 -0400, Ainsworth, Thomas wrote:
> Greetings,
>
> I was told to bring my issue to this distribution.
>
> Six months or so ago I was tasked with setting up a Kerberos/LDAP
> Authentication server. After a
> month of headaches I finally got it to work - Then I relaized
Greetings,
I was told to bring my issue to this distribution.
Six months or so ago I was tasked with setting up a Kerberos/LDAP
Authentication server. After a
month of headaches I finally got it to work - Then I relaized it would be a
monster to maintain. Then a
peer asked me to have a look at
On Thu, May 23, 2013 17:23, Rob Crittenden wrote:
> Sigbjorn Lie wrote:
>
>> Hi,
>>
>>
>> I opened a RFE request almost 2 years ago for automount cross-location
>> support, and recently I
>> discovered how it can be integrated.
>>
>> https://fedorahosted.org/freeipa/ticket/1699
>>
>>
>>
>> It i
On Thu, May 23, 2013 17:02, Martin Kosek wrote:
> On 05/23/2013 04:56 PM, Sigbjorn Lie wrote:
>
>> Hi,
>>
>>
>> I opened a RFE request almost 2 years ago for automount cross-location
>> support, and recently I
>> discovered how it can be integrated.
>>
>> https://fedorahosted.org/freeipa/ticket
On 05/23/2013 07:37 PM, John Moyer wrote:
> So I found this page and followed it. The http daemon works great (no longer
> complains about not being the cert for my URL. However, now I can't bind
> anymore servers to my IPA server. The current servers enrolled before I did
> this work great (an
On Thu, 23 May 2013, Dean Hunter wrote:
On Thu, 2013-05-23 at 13:22 -0400, Rob Crittenden wrote:
Dean Hunter wrote:
> On Thu, 2013-05-23 at 17:58 +0200, Martin Kosek wrote:
>>
>> # koji download-build freeipa-3.2.0-2.fc19 --arch x86_64
>>
>> HTH,
>> Martin
>
> Do these messages mean that there a
22 matches
Mail list logo
