[389-users] Re: Promoting two replicas to master/replica

anonymous access to them (or bind with any valid user -- a much more involved fix). Now, we move on... On Sat, Jul 30, 2016 at 4:50 PM, Gary Algier <gaali...@gmail.com> wrote: > Mark: > > Thanks for the information. I got as far as step [2] and ran into a road > block. >

[389-users] Re: Promoting two replicas to master/replica

ny ideas why identical content, but on a different server, would result in not being able to enumerate? And only for Solaris 10 clients? Gary On Thu, Jul 28, 2016 at 4:54 PM, Mark Reynolds <marey...@redhat.com> wrote: > Hi Gary > > On 07/28/2016 03:55 PM, Gary Algier wrote:

[389-users] Promoting two replicas to master/replica

easily "promote" B? All the docs I find talk about multimaster. I don't think I am ready to go there yet. -- Gary Algier -- 389-users mailing list 389-users@lists.fedoraproject.org https://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org

[389-users] Pass through auth using krbPrincipalName

for the authentication. Another option would be if the user did not need to be found in the passwd data. I don't really need it for pass through auth anyway. Unfortunately, pam fails if the user can't be found. Any ideas? -- Gary Algier -- 389-users mailing list 389-users@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org

Re: [389-users] Missing 389-console?

Well, I solved my own problem. I ran strace and saw it was opening files in /root/.389-console. A simple "rm -rf /root/.389-console¨ fixed it. Gary On Mon, Oct 19, 2015 at 4:25 PM, Gary Algier <gaali...@gmail.com> wrote: > Okay, I found it in epel-testing but it does not work. &

[389-users] 389 DS merged with AD?

this. I don't even know what kind of tool I am asking for or I might be able to search for it and answer my own question. Any pointers would be appreciated. Gary Algier -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users

Re: [389-users] 389 DS merged with AD?

On Tue, Apr 14, 2015 at 3:23 PM, Rich Megginson rmegg...@redhat.com wrote: On 04/14/2015 12:41 PM, Gary Algier wrote: Hello, I am in search of a tool to solve a new directory server issue in relation to Active Directory... For a long time here at work, we have had LDAP as our

[389-users] Solaris 5.2 DS replicate to 389 DS

. Is there anyone who has successfully made this replication work that might be willing to help? -- Gary Algier, WB2FWZg...@ulticom.com +1 856 787 2758 Ulticom Inc., 1020 Briggs Rd, Mt. Laurel, NJ 08054 Fax:+1 856 866 2033 -- 389 users mailing list 389-users

Re: [389-users] Solaris 5.2 DS replicate to 389 DS

On 11/02/14 15:33, Rich Megginson wrote: On 11/02/2014 02:22 PM, Gary Algier wrote: Hello, I am looking for help with creating a replication agreement between a Solaris DS and a 389 DS. I says in the FAQ: Sun DS 5.2

Re: [389-users] Password synchronisation beetween openldap and AD 2008 R2

On 01/16/14 11:07, Louis-Marie Plumel wrote: My environment is 99 % under linux and authentication is full LDAP. For some 30 workstations under windows, i had to create an AD under 2008 R2. For some reasons, i have to synchronize password beetween LDAP and AD. Linux users will keep

Re: [389-users] Password synchronisation beetween openldap and AD 2008 R2

a trust which will then negate having AD users change their passwords. Just make sure you have fully redundant IPA and AD servers so authentication will not break. Dan On 01/16/2014 12:08 PM, Gary Algier wrote: On 01/16/14 11:07, Louis-Marie Plumel wrote: My environment is 99 % under linux

[389-users] Keep the schema or change it?

DS. -- Gary Algier, WB2FWZ gaa at ulticom.com +1 856 787 2758 Ulticom Inc., 1020 Briggs Rd, Mt. Laurel, NJ 08054 Fax:+1 856 866 2033 Nielsen's First Law of Computer Manuals: People don't read documentation voluntarily. -- 389 users mailing list 389-users

Re: [389-users] No schema?

On 07/13/12 11:42, Rich Megginson wrote: On 07/13/2012 09:41 AM, Gary Algier wrote: Hello: I just installed a fresh install of the 389 DS from EPEL and I see no schema: - # ldapsearch -x -h localhost -s sub -b cn=schema -w

Re: [389-users] No schema?

On 07/16/12 12:10, Rich Megginson wrote: On 07/16/2012 10:03 AM, Gary Algier wrote: On 07/13/12 11:42, Rich Megginson wrote: On 07/13/2012 09:41 AM, Gary Algier wrote: Hello: I just installed a fresh install of the 389 DS from EPEL and I see no schema

[389-users] No schema?

-release:CentOS release 5.8 (Final) -- Gary Algier, WB2FWZ gaa at ulticom.com +1 856 787 2758 Ulticom Inc., 1020 Briggs Rd, Mt. Laurel, NJ 08054 Fax:+1 856 866 2033 Nielsen's First Law of Computer Manuals: People don't read documentation voluntarily. -- 389 users mailing list

Re: [389-users] UID Number Limitations

system. The problem with the second choice is that you could have people with the same UID as system processes. When they do an ls -l they may see that their files belong to smolt or nagios or similar. Also, they would be able to edit files that perhaps should be off limits to them. -- Gary

Re: [389-users] Question about PasswordPolicy

Timestamps in LDAP are generally represented by a string of digits followed by Z. This is approximately an ISO 8601 format (ISO puts a T between the date and time).It breaks down as in: 20110523133732Z MMDDHHMMSSZ 2011 year 05 month 23 day of month 13 hour 37

[389-users] Simple AD password sync?

Management Suite (OIM) which is currently doing this function along with lots of other unnecessary things. Can anyone point me to where to find the old password sync tool? Or is there a way to use the current one without replication, etc? Thanks, Gary -- Gary Algier, WB2FWZ gaa