Re: [Freeipa-users] confused about replica role and use

> > Unfortunately it is, it is a bug in the way we update the krb5 libraries > to point to a KDC. > > SSSD updates this information in a file under /var/lib/sss/pubconf and > krb5 libraries read from it, however kinit cannot force sssd to > re-evaluate if the file needs updating. > Is there a work

Re: [Freeipa-users] bash completion freeze possibly related to freeipa/sssd

Adding freeipa-users mailing list back, so that other users can learn. On 12/17/2015 03:36 PM, Karl Forner wrote: >> It all depends when the bash completion freezes. Maybe some bash completion >> plugin tries to enumerate users or groups which takes time? > > > that's one of my hypothesis > >

Re: [Freeipa-users] bash completion freeze possibly related to freeipa/sssd

On 12/17/2015 03:25 PM, Karl Forner wrote: > Hello, > > Since we use freeIPA, every ubuntu client experiences some sporadic freezes > with bash completion. It seems far-fetched but the other ubuntu not using > sssd/freeipa do not experience these problems. > > Could it be related ? How to trouble

[Freeipa-users] bash completion freeze possibly related to freeipa/sssd

Hello, Since we use freeIPA, every ubuntu client experiences some sporadic freezes with bash completion. It seems far-fetched but the other ubuntu not using sssd/freeipa do not experience these problems. Could it be related ? How to troubleshoot ? Regards, Karl -- Manage your subscription for t

[Freeipa-users] Avoid auto-setting krbpasswordexpiration to pwdpolicy?

Hi, I am setting up an LDAP connection from our Identity Management system which provisions our IPA servers with fresh users and groups. I set it up pretty nice so far, with some added privileges for change admin passwords and avoiding password resets. But when we create a brand new user with a

[Freeipa-users] deny read Access to passwd for external users

Hi guys, merry christmas and happy new year. I have a freeipa (4.1.0) server on a centos 7 machine and its working fine even with active directory integration. But I would like to know if is it possible to deny read access to certain system configuration files and directories within the server

[Freeipa-users] FreeIPA server in Docker containers -- upcoming changes

Hello, if you are running FreeIPA servers in containers, you might want to be aware of a change that is coming -- in branch master-systemd of https://github.com/adelton/docker-freeipa we run the FreeIPA services via native systemd in the container, instead of the emulation of systemctl