Hello,
Is it possible to enable the sssd profile feature, "with-faillock", for
local accounts, even root, on a freeipa enrolled AlmaLinux 8 host in a
freeipa domain that's in a trust with AD? What a mouthful.
I can enable "with-faillock", but it appears to enable it for local and
trusted users. P
Hey, glad you found the code. It was never my intention to abandon my code,
but a job change took me away from using IdM in a professional setting. My
original infrastructure had 4 pairs of IPA servers at 4 different sites with an
unconventional replication route between them all. I needed th
Thanks, Rob,
ipa-cacert-manage list succeeds, with ~13 lines of output that look like
they're probably enumeration of certs. pki client init && pki ca cert find
succeeds and returns ~20 results, with the following warning:
WARNING: UNTRUSTED ISSUER encountered on
'CN=freeipa1.local.domain,O=LOCAL
Toma Morris via FreeIPA-users wrote:
> I have taken over an existing deployment of FreeIPA that has not been updated
> in some time. I would like to update it, but am getting a recurring error and
> do not know how to fix it. Currently it is FreeIPA v4.9.6, running on Fedora
> 34, running in VMs
