I am trying to use FreeIPA together with the tail-f ' s free confd version, for the user authentication. I have configured the confd server, and now trying to configure, how to employ it with freeIPA , any help or directions in this regard will be greatly appreciated. Thanks a lot
I am a linux beginner. How does the user i create with # useradd on the ipa server machine differ from the user created using # ipa add-user . Also, when i type #getent /etc/passwd on the IPA server machine, I also couldn’t find the user I created with #ipa add-user. Please explain?
Can anyone let me know if the ipa client would still authenticate with the user credentials setup in the server if the network goes down ? I did a small setup and when I disconnected the network cable , I could still login in to the client machine locally.
Quick and dumb question. I suppose I have to add the computer to the domain first before being able to login Katelyn? Do I do that with the usual "realm join --user=domain_administrator myrealm.example" command or is there a specific command for FreeIPA?
Actually, this video and this document are now a bit outdated, because they're based on CentOS 7. The procedure for the RHEL 8-type distros is a bit different, and I haven't written anything about them as yet. Your best bet for now is to go to the Red Hat documentation site and look up their chapters about "Identity Management". (For some reason, they call it that instead of "FreeIPA.)
Hi Kevin! First, thanks for the kind words. To answer your question, in this case, Katelyn's home directory is just on the one local client machine. To have a centralized home directory that she could access from any machine, and administrator would have to set it up on a central NFS server. Anyway, I hope that helps.
You can't join Windows clients, but you can create a cross-domain trust between a Linux domain running FreeIPA and a Windows domain that runs Active Directory. I think that you can join Mac clients, but I don't remember for sure. Your best bet for a definitive answer would be to search through the FreeIPA documentation at the Red Hat website.
I am trying to use FreeIPA together with the tail-f ' s free confd version, for the user authentication. I have configured the confd server, and now trying to configure, how to employ it with freeIPA , any help or directions in this regard will be greatly appreciated. Thanks a lot
Thank you very much sir. You save me.
I am a linux beginner. How does the user i create with # useradd on the ipa server machine differ from the user created using # ipa add-user .
Also, when i type #getent /etc/passwd on the IPA server machine, I also couldn’t find the user I created with #ipa add-user. Please explain?
Excellent video!
Many thanks! I appreciate the kind words.
sometime I feel weird is it just me or the machine trying to act as me? I'm from vietnam thank you for answer.
Can anyone let me know if the ipa client would still authenticate with the user credentials setup in the server if the network goes down ? I did a small setup and when I disconnected the network cable , I could still login in to the client machine locally.
by default, Kerberos caches the tickets in the /tmp directory
When will we get more videos on this??
Well, I've been meaning to do some more, but it hasn't worked out. I'll see what I can do in the near future.
Quick and dumb question. I suppose I have to add the computer to the domain first before being able to login Katelyn? Do I do that with the usual "realm join --user=domain_administrator myrealm.example" command or is there a specific command for FreeIPA?
Hi Ronny! Actually, if you look further down in the playlist, you'll see a video about how to join a client computer to the FreeIPA domain.
/bin/sh is a symbolic link to /bin/bash (in CentOS/RedHat/Fedora), so you actually don't have to change it.
Thank you for your advice! I didn't know
[sas@saspc ~]$ type sh
sh is /usr/bin/sh
[sas@saspc ~]$ ls -l /usr/bin/sh
lrwxrwxrwx. 1 root root 4 Nov 8 2019 /usr/bin/sh -> bash
But when bash is executed as 'sh' it limits it's feature set to POSIX only.
@@ZiggleFingers I didn't know :)
I need the freeipa document in this video
Actually, this video and this document are now a bit outdated, because they're based on CentOS 7. The procedure for the RHEL 8-type distros is a bit different, and I haven't written anything about them as yet. Your best bet for now is to go to the Red Hat documentation site and look up their chapters about "Identity Management". (For some reason, they call it that instead of "FreeIPA.)
is the katlyin home directory also synced between clients? or do you need a service like nfs for this? thanks for the videos!!
09:00 awesome!
Hi Kevin! First, thanks for the kind words. To answer your question, in this case, Katelyn's home directory is just on the one local client machine. To have a centralized home directory that she could access from any machine, and administrator would have to set it up on a central NFS server.
Anyway, I hope that helps.
Hi, Thanks for the video. Can you tell me if this FreeIPA supports Windows & Mac clients to join?! Looking for your answers.
You can't join Windows clients, but you can create a cross-domain trust between a Linux domain running FreeIPA and a Windows domain that runs Active Directory.
I think that you can join Mac clients, but I don't remember for sure. Your best bet for a definitive answer would be to search through the FreeIPA documentation at the Red Hat website.
Not everything has bash, sh is the safe default.
Its not so much that "sh is the safe default" as "building for sh compatibility is required to be POSIX-compliant".
kde is the desktop, gnome is merely an attempt at one.
Good one!
say kerberos 10 times xD
Kurr Burr OS
Better yet, let's say it 100 times.