Am Wed, Apr 06, 2022 at 08:29:21AM -0000 schrieb Francis Augusto Medeiros-Logeay via FreeIPA-users: > Hi, > I wonder if it is possible to configure a FreeIPA client to assume that > clients logging in are from a trusted AD domain, instead of having those > users to type `username@ad_domain` when logging in. > I know I could have the user synchronisation approach so that users coexist > on both systems, but a trust without sync is less complex, and I will have > almost no FreeIPA users - I just want to join linux clients to FreeIPA for > better management of linux resources. > Any tips on if it is possible at all to do this?
Hi, please check the '--domain-resolution-order' option of 'ipa config-mod', you can find details at https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/configuring_and_managing_identity_management/configuring-the-domain-resolution-order-to-resolve-short-ad-user-names_configuring-and-managing-idm HTH bye, Sumit > > Best, > Francis > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam on the list, report it: > https://pagure.io/fedora-infrastructure _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
