Hi Rob,
Thanks for answering my doubts! The admin in my case has these privileges =
{"Service Administrator", "Host Administrator"}. Is some other
privilege needed to delete a host ?On Wed, Oct 26, 2022 at 10:35 PM Rob Crittenden <[email protected]> wrote: > Abhishek Dasgupta via FreeIPA-users wrote: > > Hello, If you can provide some pointers, it would be great! . Thanks > > > > Best, > > Abhishek > > > > On Fri, Oct 21, 2022 at 6:17 PM Abhishek Dasgupta > > <[email protected] <mailto:[email protected]>> > > wrote: > > > > Newbie here. I have a use-case where I need to delete host > > principals only when no service principals exist on the host. Does > > "ipa host-del" perform this check? If No, then when I run this > > command would it delete the host principal and along with it delete > > all the service principals associated ? > > A service can't exist without an accompanying host. If you use host-del > it will delete the host and all services, no questions asked. > > > I tried to run the command on a host but got the following error: > > > > ipa: ERROR: Insufficient access: Insufficient 'delete' privilege to > > delete the entry > > > > > > What privileges are needed to run this command ? I was already kinit > > as an admin. > > In a stock install admin should have sufficient privileges to remove any > host that is not also an IPA server. > > It will delete: > > - the host > - all services > - revoke all certificates issued to the host/service > - all DNS records for the host/service > > rob > >
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
