ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    FreeIPA Server & Client

    Scheduled Pinned Locked Moved IT Discussion
    47 Posts 4 Posters 7.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • brianlittlejohnB
      brianlittlejohn @AlyRagab
      last edited by

      @AlyRagab I had to manually change a few things. I don't remember what exactly, I was just testing thing, I was following a guide online. My linux skills are still in development.

      1 Reply Last reply Reply Quote 0
      • scottalanmillerS
        scottalanmiller @AlyRagab
        last edited by

        @AlyRagab said in FreeIPA Server & Client:

        So what about Ubuntu , i have a client with a lot of ubuntu 14.04 as workstations , do i need to install the FreeIPA on a Ubuntu Server to be compatible with ubuntu workstations ?.

        No, FreeIPA is FreeIPA.

        1 Reply Last reply Reply Quote 0
        • stacksofplatesS
          stacksofplates @brianlittlejohn
          last edited by

          @brianlittlejohn said in FreeIPA Server & Client:

          @AlyRagab I have connected Linux Mint, to a CentOS freeIPA server.

          Which Mint?

          brianlittlejohnB 1 Reply Last reply Reply Quote 0
          • brianlittlejohnB
            brianlittlejohn @stacksofplates
            last edited by brianlittlejohn

            @stacksofplates at the time it was 17.3

            stacksofplatesS 1 Reply Last reply Reply Quote 0
            • stacksofplatesS
              stacksofplates @AlyRagab
              last edited by

              @AlyRagab said in FreeIPA Server & Client:

              So what about Ubuntu , i have a client with a lot of ubuntu 14.04 as workstations , do i need to install the FreeIPA on a Ubuntu Server to be compatible with ubuntu workstations ?.

              No you can use CentOS. The issue here is the difference in version of client to server.

              1 Reply Last reply Reply Quote 0
              • stacksofplatesS
                stacksofplates @brianlittlejohn
                last edited by

                @brianlittlejohn said in FreeIPA Server & Client:

                @stacksofplates at the time it was 17

                Ya, that's 14.04. Probably why it worked.

                1 Reply Last reply Reply Quote 0
                • stacksofplatesS
                  stacksofplates
                  last edited by

                  So this page http://www.freeipa.org/page/Client says SSSD should be backwards compatible. It's just the ipa-admintools that is not backwards compatible.

                  AlyRagabA 1 Reply Last reply Reply Quote 0
                  • AlyRagabA
                    AlyRagab @stacksofplates
                    last edited by

                    @stacksofplates said in FreeIPA Server & Client:

                    So this page http://www.freeipa.org/page/Client says SSSD should be backwards compatible. It's just the ipa-admintools that is not backwards compatible.

                    yes you are right , because when i installed the ipa-admintools then run the command "ipa find-user --all " it showed this error " ipa: ERROR: 2.65 client incompatible with 2.49 server at u'https://ipa.example.com/ipa/xml' "
                    but now i am thinking that i have to change something related to the PAM Modules that responsible for the authentication through the client login screen but what is that ?

                    stacksofplatesS 1 Reply Last reply Reply Quote 0
                    • stacksofplatesS
                      stacksofplates @AlyRagab
                      last edited by

                      @AlyRagab said in FreeIPA Server & Client:

                      @stacksofplates said in FreeIPA Server & Client:

                      So this page http://www.freeipa.org/page/Client says SSSD should be backwards compatible. It's just the ipa-admintools that is not backwards compatible.

                      yes you are right , because when i installed the ipa-admintools then run the command "ipa find-user --all " it showed this error " ipa: ERROR: 2.65 client incompatible with 2.49 server at u'https://ipa.example.com/ipa/xml' "
                      but now i am thinking that i have to change something related to the PAM Modules that responsible for the authentication through the client login screen but what is that ?

                      Your config had the sss module and nsswitch.conf was calling sss, I'm not sure what's missing. I tried your system-auth and password-auth files on one of my machines and they worked.

                      AlyRagabA 1 Reply Last reply Reply Quote 0
                      • AlyRagabA
                        AlyRagab @stacksofplates
                        last edited by

                        Your config had the sss module and nsswitch.conf was calling sss, I'm not sure what's missing. I tried your system-auth and password-auth files on one of my machines and they worked.

                        i will re-install the IPA server and client again and tell you the result 🙂

                        1 Reply Last reply Reply Quote 1
                        • AlyRagabA
                          AlyRagab
                          last edited by

                          i have tested it again :
                          FreeIPA Server on CentOS 7
                          FreeIPA Client on Ubuntu 14.04
                          and everything is working fine now after following this Link 🙂
                          http://www.techs2resolve.in/2015/06/how-to-add-client-to-freeipa-server.html
                          Thank You All 🙂 🙂

                          stacksofplatesS 1 Reply Last reply Reply Quote 2
                          • stacksofplatesS
                            stacksofplates @AlyRagab
                            last edited by

                            @AlyRagab said in FreeIPA Server & Client:

                            i have tested it again :
                            FreeIPA Server on CentOS 7
                            FreeIPA Client on Ubuntu 14.04
                            and everything is working fine now after following this Link 🙂
                            http://www.techs2resolve.in/2015/06/how-to-add-client-to-freeipa-server.html
                            Thank You All 🙂 🙂

                            That's what I usually do. The install process is so fast and easy that it's almost not worth it to troubleshoot problems.

                            AlyRagabA 1 Reply Last reply Reply Quote 1
                            • AlyRagabA
                              AlyRagab @stacksofplates
                              last edited by

                              @stacksofplates said in FreeIPA Server & Client:

                              @AlyRagab said in FreeIPA Server & Client:

                              i have tested it again :
                              FreeIPA Server on CentOS 7
                              FreeIPA Client on Ubuntu 14.04
                              and everything is working fine now after following this Link 🙂
                              http://www.techs2resolve.in/2015/06/how-to-add-client-to-freeipa-server.html
                              Thank You All 🙂 🙂

                              That's what I usually do. The install process is so fast and easy that it's almost not worth it to troubleshoot problems.

                              the problem was related to PAM Configuration to allow the authentication by the login screen

                              1 Reply Last reply Reply Quote 0
                              • AlyRagabA
                                AlyRagab
                                last edited by

                                But now regarding this setup , if the user login on a machine and saved his files on his home directory , when he logs again on other machine he will not get his files , so how can we make all user's files saved on the server and the client just is mounting his home directory ?.

                                stacksofplatesS 1 Reply Last reply Reply Quote 0
                                • stacksofplatesS
                                  stacksofplates @AlyRagab
                                  last edited by stacksofplates

                                  @AlyRagab said in FreeIPA Server & Client:

                                  But now regarding this setup , if the user login on a machine and saved his files on his home directory , when he logs again on other machine he will not get his files , so how can we make all user's files saved on the server and the client just is mounting his home directory ?.

                                  If you set up an NFS server and use ipa-client-automount you can set it up on the client. You have to set up the auto mount in FreeIPA first though. For home directories you will want to use an indirect mount.

                                  AlyRagabA 1 Reply Last reply Reply Quote 2
                                  • AlyRagabA
                                    AlyRagab @stacksofplates
                                    last edited by

                                    @stacksofplates said in FreeIPA Server & Client:

                                    @AlyRagab said in FreeIPA Server & Client:

                                    But now regarding this setup , if the user login on a machine and saved his files on his home directory , when he logs again on other machine he will not get his files , so how can we make all user's files saved on the server and the client just is mounting his home directory ?.

                                    If you set up an NFS server and use ipa-client-automount you can set it up on the client. You have to set up the auto mount in FreeIPA first though. For home directories you will want to use an indirect mount.

                                    now i have configured the NFS to export the /home in the same server of the IPA Server ,
                                    should i use the autofs configuration on the client or just the command ipa-client-automount ?
                                    also what i should do from the ipa server ?

                                    stacksofplatesS 1 Reply Last reply Reply Quote 0
                                    • stacksofplatesS
                                      stacksofplates @AlyRagab
                                      last edited by

                                      @AlyRagab said in FreeIPA Server & Client:

                                      @stacksofplates said in FreeIPA Server & Client:

                                      @AlyRagab said in FreeIPA Server & Client:

                                      But now regarding this setup , if the user login on a machine and saved his files on his home directory , when he logs again on other machine he will not get his files , so how can we make all user's files saved on the server and the client just is mounting his home directory ?.

                                      If you set up an NFS server and use ipa-client-automount you can set it up on the client. You have to set up the auto mount in FreeIPA first though. For home directories you will want to use an indirect mount.

                                      now i have configured the NFS to export the /home in the same server of the IPA Server ,
                                      should i use the autofs configuration on the client or just the command ipa-client-automount ?
                                      also what i should do from the ipa server ?

                                      Dont do the manual set up on the client. On the IPA server, under the automount tab just configure where you want the mount to come from. Then on the client run ipa-install-automount and it will set everything.

                                      1 Reply Last reply Reply Quote 2
                                      • 1
                                      • 2
                                      • 3
                                      • 3 / 3
                                      • First post
                                        Last post