I now get: [Thu Jul 09 02:50:18.815219 2015] [:error] [pid 16615]
Certificate not found: 'Server-Cert'
So, it's no good at all :)
2015-07-09 3:27 GMT+02:00 Nigel Sollars :
> Fair enough :)
>
> On Wed, Jul 8, 2015 at 9:25 PM, Matt . wrote:
>>
>> Hi,
>>
>> No I'm testing some recovering strategies
Fair enough :)
On Wed, Jul 8, 2015 at 9:25 PM, Matt . wrote:
> Hi,
>
> No I'm testing some recovering strategies for the docs, so I need to
> have that checked.
>
> I have emailed Martin Kosek if he can enable the olders repo's again,
> would be great!
>
> Thanks,
>
> Matt
>
> 2015-07-09 3:23 GM
Hi,
No I'm testing some recovering strategies for the docs, so I need to
have that checked.
I have emailed Martin Kosek if he can enable the olders repo's again,
would be great!
Thanks,
Matt
2015-07-09 3:23 GMT+02:00 Nigel Sollars :
> Would it not be wise to keep with current?
>
> There does s
Hi I found that but it didn't fix it, thanks btw.
Now I'm looking for a way to install 4.1.2 on CentOS 7.x as it seems
that the maintainer empties the repo after every release... so older
versions are not there anymore.
2015-07-09 3:17 GMT+02:00 Nigel Sollars :
> Looks similar to a TLS/SSL issue
Looks similar to a TLS/SSL issue in this thread,
http://www.linuxquestions.org/questions/linux-server-73/centos-5-5-5-6-ssl-problem-874090/
Hope this helps,
Regards
On Wed, Jul 8, 2015 at 5:04 PM, Matt . wrote:
> I'm facing a httpd server which won't start with ipa, so IPA fails to
> start.
>
I'm facing a httpd server which won't start with ipa, so IPA fails to start.
As I'm really not able to find anything about it on the internet I
wonder if someone knows why it's logging this and how I can fix it.
[Wed Jul 08 22:55:11.728828 2015] [:error] [pid 9243] Password for
slot internal is i
I forgot my main use case: I have name-based reverse proxies (SNI) for some
web apps/services , that are accessible both from the internal and external
network.
They must be accessed with the exact same name/url, otherwise the dispatch
can not work.
Until now I manage this by manually editing all /
On 06/01/2015 08:54 AM, Rob Crittenden wrote:
> Orion Poplawski wrote:
>> On 05/28/2015 03:09 PM, Rob Crittenden wrote:
>>> Orion Poplawski wrote:
We did a CAless install:
ipa-server-install -r NWRA.COM -n nwra.com -p `cat /etc/ldap.secret` -a
`cat
/etc/ldap.secret` --root
On 8.7.2015 16:32, Karl Forner wrote:
> Thanks Petr.
>
> My use case is: we have scripts that connect to some services, let's say a
> docker registry.
> I want these scripts to be work either internally or externally, without
> changing the URLs.
> What would the best or easiest setting to achieve
Thanks Petr.
My use case is: we have scripts that connect to some services, let's say a
docker registry.
I want these scripts to be work either internally or externally, without
changing the URLs.
What would the best or easiest setting to achieve this ?
On Wed, Jul 8, 2015 at 4:25 PM, Petr Spacek
Okay, but DNS doesn't work in that way. Zone example.test. is
authoritative, so it must contain the record or delegation or NXDOMAIN is
returned. You cannot have multiple authoritative copies of one zone with
different data.
>
> The best solution would be to have only internal.example.test. zone
>
On 8.7.2015 15:07, Karl Forner wrote:
> On Wed, Jul 8, 2015 at 2:32 PM, Jan Pazdziora wrote:
>
>> On Wed, Jul 08, 2015 at 02:26:02PM +0200, Karl Forner wrote:
>>>
>>> When using my freeIPA DNS name server for my domain example.test, I need
>> to
>>> exclude some names from the server( to be forwa
On 08/07/15 16:14, Karl Forner wrote:
Thanks Martin, but I do not want to forward the whole subzone.
I have the example.test zone from my web hosting site, that manages
also the domain example.test
I use the example.test domain in freeIPA.
So the problem is that in the internal network, I can
Thanks Martin, but I do not want to forward the whole subzone.
I have the example.test zone from my web hosting site, that manages also
the domain example.test
I use the example.test domain in freeIPA.
So the problem is that in the internal network, I can no longer resolve
www.example.test.
Of co
On 08/07/15 14:26, Karl Forner wrote:
Hello,
When using my freeIPA DNS name server for my domain example.test, I
need to exclude some names from the server( to be forwarded to the DNS
forwarder for instance.
For example, I'd like foo.example.test not to be resolved, but forwarded.
How could
On Wed, Jul 8, 2015 at 2:32 PM, Jan Pazdziora wrote:
> On Wed, Jul 08, 2015 at 02:26:02PM +0200, Karl Forner wrote:
> >
> > When using my freeIPA DNS name server for my domain example.test, I need
> to
> > exclude some names from the server( to be forwarded to the DNS forwarder
> > for instance.
On Wed, Jul 08, 2015 at 02:26:02PM +0200, Karl Forner wrote:
>
> When using my freeIPA DNS name server for my domain example.test, I need to
> exclude some names from the server( to be forwarded to the DNS forwarder
> for instance.
>
> For example, I'd like foo.example.test not to be resolved, bu
Hello,
When using my freeIPA DNS name server for my domain example.test, I need to
exclude some names from the server( to be forwarded to the DNS forwarder
for instance.
For example, I'd like foo.example.test not to be resolved, but forwarded.
How could I implement this ?
Thanks.
Karl Forner
--
On 5.7.2015 08:38, John Stein wrote:
> Hi,
>
> I ran these commands in the IdM server
>
> $ ipa dnszone-mod 2.0.192.in-addr.arpa. --update-policy='grant JOHN.COM
> krb5-self * PTR; grant LINUX.JOHN.COM krb5-self * PTR;'
> $ ipa dnszone-mod 2.0.192.in-addr.arpa. --dynamic-update=1
>
> At the Acti
Hi All,
I am a new user and I have a question about FreeIPA authentication
methods.
Can FreeIPA select different auth methods (i.e. otp, password, etc) for the
same user based on the service he wants to access? I mean using this user
should use otp for the mail service, the password for the se
RHEL guide has
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/managing-topology.html#repl-tools
Does that help?
On 07/07/2015 03:06 PM, John Stein wrote:
> Thanks for the reply.
>
> Maybe this should be added to
21 matches
Mail list logo