Thomas, you have several ways to do so, each has its own pro and cons. Start by taking a look here : https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/introduction I strongly encourage you to read quickly the whole manual just from the above to get an idea of which scenario fits better to your needs, normally, but not always, Indirect integration using AD trust is the best (you can find that on the link ). Once you have that sorted, set a testing environment to try the features you need/want, there are several guidelines, one but outdated: https://www.freeipa.org/page/Active_Directory_trust_setup . 97% there still works.
hope that gives you something to start. regards, -- Juan Pablo Máscolo IRC: Kal3ssiN El mar., 14 jul. 2020 a las 3:38, Thomas Schneider via FreeIPA-users (< [email protected]>) escribió: > Hello, > > I'm planning to implement FreeIPA in an existing organization that is > providing services > - DNS > - Active Directory > - LDAP > - Certificates > > My question for the experts is: > What is your best practice / recommendation for implementation of > FreeIPA considering the existing services? > Should I simply *not activate* services in FreeIPA that already exist, > e.g. DNS, Certificates? > > Regards > Thomas > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] >
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
