On Fri, Sep 25, 2015 at 11:48:27AM +0200, Pavel Březina wrote:
> On 09/25/2015 10:06 AM, Jakub Hrozek wrote:
> >On Thu, Sep 24, 2015 at 03:39:48PM +0200, Christoph Kaminski wrote:
> >>Hi
> >>
> >>I have 3 problems/questions with ipa and sudo...
> >>
> >>1. How to make a GLOBAL sudo rule with all
Issue was an AllowGroups directive in /etc/ssh/sshd_config that was
blocking this. It was not a FreeIPA issue :)
> Setup : FreeIPA server 4.1.2 on CentOS 7.
> FreeIPA client on CentOS 5.11
>
> Client installed properly with the exception of the following error about
> updating A records (from
Setup : FreeIPA server 4.1.2 on CentOS 7.
FreeIPA client on CentOS 5.11
Client installed properly with the exception of the following error about
updating A records (from ipaclient-install.log)
2015-09-25 12:24:23,195 DEBUG Writing nsupdate commands to
/etc/ipa/.dns_update.txt:
zone
On Tue, Sep 22, 2015 at 08:55:53AM -0400, Nathaniel McCallum wrote:
> On Mon, 2015-09-21 at 16:49 -0600, Duncan McNaught wrote:
> > Dear freeipa-users,
> >
> > I'm having an issue with otp in freeipa. I can set up the service as
> > described in the blog post for TOTP or HOTP, and sync the token
On Fri, 25 Sep 2015, Jan Pazdziora wrote:
On Tue, Sep 22, 2015 at 08:55:53AM -0400, Nathaniel McCallum wrote:
On Mon, 2015-09-21 at 16:49 -0600, Duncan McNaught wrote:
> Dear freeipa-users,
>
> I'm having an issue with otp in freeipa. I can set up the service as
> described in the blog post for
On Fri, Sep 25, 2015 at 10:09:55AM +0300, Alexander Bokovoy wrote:
> >
> >Well, we have separate daemon listening on the
> >/var/run/krb5kdc/DEFAULT.socket in the container which should start
> >the ipa-otpd@.service when there's a connection made to it. But
> >somehow it does not seem to be
On 24.9.2015 17:29, Rich Megginson wrote:
> On 09/24/2015 09:24 AM, Aric Wilisch wrote:
>> Is there a way of exporting the DNS information out of Freeipa? Then I could
>> just do a diff on the export from master and replica.
>
> That's what Martin was suggesting you use dnspython to do.
You can
On Thu, Sep 24, 2015 at 03:39:48PM +0200, Christoph Kaminski wrote:
> Hi
>
> I have 3 problems/questions with ipa and sudo...
>
> 1. How to make a GLOBAL sudo rule with all the options what I want to
> have? (e.g. !authenticate). I have tried to make a sudo rule for all users
> on all hosts
On Fri, 25 Sep 2015, Jan Pazdziora wrote:
On Fri, Sep 25, 2015 at 10:09:55AM +0300, Alexander Bokovoy wrote:
>
>Well, we have separate daemon listening on the
>/var/run/krb5kdc/DEFAULT.socket in the container which should start
>the ipa-otpd@.service when there's a connection made to it. But
On 24.9.2015 16:16, Andy Thompson wrote:
>
>
>> -Original Message-
>> From: freeipa-users-boun...@redhat.com [mailto:freeipa-users-
>> boun...@redhat.com] On Behalf Of Petr Spacek
>> Sent: Thursday, September 24, 2015 9:50 AM
>> To: freeipa-users@redhat.com
>> Subject: Re:
Hi,
I want to install ipa client: ipa-client-install -d
I get the following error:
Verifying that "MyFreeIPA Server" (realm None) is an IPA server
Init LDAP connection to: "MyFreeIPA Server"
Error checking LDAP: Connect error: TLS error -8054:You are attempting
to import a cert with the same
On Fri, 2015-09-25 at 09:22 +0200, Jan Pazdziora wrote:
> On Fri, Sep 25, 2015 at 10:09:55AM +0300, Alexander Bokovoy wrote:
> > >
> > > Well, we have separate daemon listening on the
> > > /var/run/krb5kdc/DEFAULT.socket in the container which should
> > > start
> > > the ipa-otpd@.service when
On 09/25/2015 10:06 AM, Jakub Hrozek wrote:
On Thu, Sep 24, 2015 at 03:39:48PM +0200, Christoph Kaminski wrote:
Hi
I have 3 problems/questions with ipa and sudo...
1. How to make a GLOBAL sudo rule with all the options what I want to
have? (e.g. !authenticate). I have tried to make a sudo
13 matches
Mail list logo