I do not know what OS you are using but if it is RHEL 6 or CentOS 6 you would
need to do the following:
In /etc/idmapd.conf:
Domain = your.domain
Add this to /etc/sysconfig/nfs
SECURE_NFS="yes"
In /etc/exports:
/home/repo *(rw,sync,sec=krb5p)
Make sure that you use NTP for every server/cli
Hi,
Did u add this user to sudo rule/users ?
On 18-09-2014 08:02, Sanju A wrote:
Dear All,
I have tried with the settings as mentioned here. But still the issue
persists.
Regards
Sanju Abraham
IS - Network/System Administrator
Tata Consultancy Services
TCS Centre SEZ Unit,
Infopark PO,
K
Dear All,
I have tried with the settings as mentioned here. But still the issue
persists.
Regards
Sanju Abraham
IS - Network/System Administrator
Tata Consultancy Services
TCS Centre SEZ Unit,
Infopark PO,
Kochi - 682042,Kerala
India
Ph:- +91 484 6187490
Mailto: sanj...@tcs.com
Website: htt
I have been fighting with getting my NFS servers kerberized since I
first installed FreeIPA back in April - I still cannot create a secured
NFS mount, and have exhausted all my resources in troublshooting, so I
am reaching out to the list since I see many of you have it working.
The next step
On 09/17/2014 12:38 AM, Greg Scott wrote:
Thanks everyone for the advice. Here's a sanitized version of what I put
together for my end user customer. Feel free to use any of this text as you
see fit.
Here's the scoop with IdM and AD trusts. It's an "official" 2-way trust w
On 09/17/2014 10:56 PM, Dan Mossor wrote:
Good day, folks.
I am curious what the suggested upgrade path is for FreeIPA.
Currently, I am running freeipa-server-3.3.5-1.fc20.x86_64 on a
virtual Fedora 20 server and am planning my upgrade to FreeIPA 4.0.3
on Fedora 21 Server.
My current though
Good day, folks.
I am curious what the suggested upgrade path is for FreeIPA. Currently,
I am running freeipa-server-3.3.5-1.fc20.x86_64 on a virtual Fedora 20
server and am planning my upgrade to FreeIPA 4.0.3 on Fedora 21 Server.
My current thought is to just build the F21 server and set it
Walid wrote:
Hi Rob,
Self signed IPA certificate i saw it is 20 years, however how about the
client nodes renewal, i see here it is automated, how, and when
For renewed CA certificate distribution, we are working on it in ticket
https://fedorahosted.org/freeipa/ticket/4322
For any server ce
On Wed, 17 Sep 2014, Ron wrote:
More information that I should have include before is below. Note that
I use a perl script to add users to the IPA server using perl->LDAP
commands (see below). Could this be the source of the problem?
Yes. If you are creating users not using IPA commands, you n
More information that I should have include before is below. Note that
I use a perl script to add users to the IPA server using perl->LDAP
commands (see below). Could this be the source of the problem?
snippet from perl createid script:
$mesg = $ldap->add("uid=$me
I have configured the DNS with the AD as a forwarder (ipa-server-install
--forwarder), just as explaine in RHEL 7 Windows Integration guide - 5.3.1.
Setting up Trust with IdM as a DNS Subdomain of Active Directory.
To use KRB5_TRACE ill need to recreate the issue.
2014-09-16 10:28 GMT+03:00 Sumit
I have created user groups and entered users.
When I view the groups under the "User Groups" heading, I see the group
members.
When I go to the "Users" heading, and click the "User Groups"
sub-heading, IPA does not show any groups (says no entries at bottom).
See attached png screenshots.
Any i
On 09/09/2014 04:39 PM, Kat wrote:
Anyone seen this before -- 2 freshly kicked CentOS 7 installs:
On the replica from the ipa-replica-install :
reports: Update failed! Status: [10 Total update abortedLDAP error:
Referral]
Your system may be partly configured.
Run /usr/sbin/ipa-server-install
Thanks to Lukas:
Step 0: Install freipa-client on ubuntu 14.04 and configure sudo integration
root@ubuntu1404:/# ipa-client-install --no-ntp
root@ubuntu1404:/# echo "sudoers: files sss" >> /etc/nsswitch.conf
root@ubuntu1404:/# grep services /etc/sssd/sssd.conf
services = nss, pam
root@ubuntu14
Dear All,
I am able to configure the sudo settings in Centos clients by
adding/modifying the entries in /etc/nsswitch.conf and
/etc/sudo-ldap.conf. What is the exact steps for the configuration in
Ubuntu as I am not able find the configuration file sudo-ldap.conf in
Ubuntu.
Regards
Sanju Ab
OK :)
No panic for my self :)
I found what was wrong. now ok.
Thnx so much
On 17-09-2014 14:53, Lukas Slebodnik wrote:
On (17/09/14 13:57), Tevfik Ceydeliler wrote:
Hi Lukas,
After you warned me, I reinstall IPA server and client, and replica.
After that I did your directives shown below.
Ever
On (17/09/14 13:57), Tevfik Ceydeliler wrote:
>
>Hi Lukas,
>After you warned me, I reinstall IPA server and client, and replica.
>After that I did your directives shown below.
>Everything looked ok.
>I got output like you tell.
>But after couple of hours later I try to conenct client host by using
Hi Lukas,
After you warned me, I reinstall IPA server and client, and replica.
After that I did your directives shown below.
Everything looked ok.
I got output like you tell.
But after couple of hours later I try to conenct client host by using
ssh and test again.
ANd suprise! client again can
2014-09-16 20:57 GMT+02:00 Nordgren, Bryce L -FS :
>
> > Also opened https://fedorahosted.org/freeipa/ticket/4544
>
> Tried to summarize this thread on that ticket.
>
> Back to the OP's concern, whenever I use NFS as a documentroot for apache
> (even a WebDAV server), I make a separate mountpoint,
19 matches
Mail list logo