On Wed, May 06, 2015 at 07:47:11AM +0200, Lukas Slebodnik wrote:
On (06/05/15 01:12), James Ralston wrote:
Hi,
I think this problem may be part (or related to) the FreeIPA/SSSD
LDAP cross-forest trust slow queries issue, but I'm not sure.
We've been testing sssd on our RHEL6 and RHEL7
I tried with RHEL 6.6 but I wasn't able to reproduce.
Weird :|
My script ran for log time.
real175m1.614s
user15m22.642s
sys 12m5.248s
I can try to test with different machines, but you were able to reproduce in
VM
as well. So i'm not sure it will help.
BTW HPC
On Wed, May 06, 2015 at 11:30:48AM +0200, Jean-Baptiste Denis wrote:
I guess none of your machines are (or could be) accessible publicly if
we can't reproduce the bug in-house at all?
This should be doable in a few days/next week. May I contact you and Lukas
off-list for the details ?
On (05/05/15 16:22), Jean-Baptiste Denis wrote:
python3 was optional from beginning but we recently added hint to configure
script how to disable it.
sssd-1.12 is very close to master so I do not expect any difference.
Good to know.
So you tested with el6.
I will try to reproduce with
I guess none of your machines are (or could be) accessible publicly if
we can't reproduce the bug in-house at all?
This should be doable in a few days/next week. May I contact you and Lukas
off-list for the details ?
Thankl you for proposing that.
Jean-Baptiste
On 05/06/2015 01:53 PM, Karim wrote:
Hi Team,
we are planning to implement two factor Auth on our AD authenticated RHELs
is there any guide available online on how to configure SSSD to use
smart card for AD login?
The SSSD support of the smart card login is being worked on for 1.13.
I think it would save time on both ends unless we can reproduce
ourselves :-)
We've got a recipie and configuration files to reproduce the bug from scratch,
on a vanilla CentOS 6 distro (the ldap part is inspired from
http://wiki.openiam.com/pages/viewpage.action?pageId=7635198)
# yum install
Hi Lukas,
On Wed, May 6, 2015 at 1:47 AM, Lukas Slebodnik lsleb...@redhat.com wrote:
On (06/05/15 01:12), James Ralston wrote:
enumerate = true
I Hope it was just for testing purposes. We do not recommend to
enable enumeration.
I know it's not recommended. I'll address this in a
On Wed, May 6, 2015 at 4:27 AM, Jakub Hrozek jhro...@redhat.com wrote:
You know, just this morning, I was thinking about enumeration. It
doesn't work for IPA views at all for example. It doesn't work for
trusted domains at all either (except for some limited support in AD
trusted domains
- Original Message -
From: James Ralston rals...@pobox.com
To: End-user discussions about the System Security Services Daemon
sssd-users@lists.fedorahosted.org
Sent: Wednesday, May 6, 2015 1:28:35 PM
Subject: [SSSD-users] please do not remove enumeration from AD provider
On Wed,
On Wed, May 06, 2015 at 01:02:22PM -0400, James Ralston wrote:
What do you recommend doing for RHEL6 (currently on
1.11.6-30.el6_6.4)?
1. Use your 1.12.5 packages on RHEL6?
2. Wait for Red Hat to backport the patch for ticket/2588 to
their 1.11.6 branch?
Unlikely to
Hi Team,
we are planning to implement two factor Auth on our AD authenticated RHELs
is there any guide available online on how to configure SSSD to use smart card
for AD login?
Thanks
___
sssd-users mailing
On Wed, May 6, 2015 at 1:26 PM, Jakub Hrozek jhro...@redhat.com wrote:
On Wed, May 06, 2015 at 01:02:22PM -0400, James Ralston wrote:
3. Wait for Red Hat to rebase RHEL6 to 1.12.5?
RHEL-6.7 will rebase to sssd-1-12. If you want to stay on the
supported patch, this is the best option. btw
13 matches
Mail list logo