<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
On 09/27/2012 12:51 PM, James James wrote:
<blockquote
cite="mid:CALBJVV=nKgc1otU_fWmeY6RonTg5rNRvXS9Kp3A=oiuECDfGcQ@mail.gmail.com"
type="cite">Not yet but can you give me some clues ?<br>
</blockquote>
<br>
It is the project that does pretty much what you are trying to
accomplish.<br>
It has nice UI. It might make sense to take a look.<br>
<a class="moz-txt-link-freetext" href="http://theforeman.org/">http://theforeman.org/</a><br>
<br>
<blockquote
cite="mid:CALBJVV=nKgc1otU_fWmeY6RonTg5rNRvXS9Kp3A=oiuECDfGcQ@mail.gmail.com"
type="cite"><br>
<div class="gmail_quote">2012/9/27 Dmitri Pal <span dir="ltr"><<a
moz-do-not-send="true" href="mailto:dpal@redhat.com"
target="_blank">dpal@redhat.com</a>></span><br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
<div>
<div class="h5"> On 09/25/2012 04:18 PM, Sigbjorn Lie
wrote:
<blockquote type="cite">
<div>On 09/25/2012 12:17 AM, James James wrote:<br>
</div>
<blockquote type="cite">Hi guys,<br>
<br>
we are planning to install 150 freeipa clients and I
was wondering if there is a way to easily install
(from kickstart) nfsv4 client.<br>
<br>
I can add host with <br>
<br>
# ipa host-add --password=secret <br>
<br>
But to get the keytab (host and service), I have to
log into the machine, launch kinit and get the
keytab. <br>
<br>
This will be very painful for 150 clients ....<br>
<br>
Any hints is welcome ...<br>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Freeipa-users mailing list
<a moz-do-not-send="true" href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a>
<a moz-do-not-send="true" href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
</blockquote>
Hi,<br>
<br>
I am working on integrating what you are asking for
into OneClickKick. OneClickKick which is a web based
GUI for managing DHCP server and PXE booting. The
current version can read the host objects from IPA's
LDAP, and you can use these to generate PXE boot files
for kickstarting RHEL/Fedora, preseeding Debian/Ubuntu
installations, do BIOS upgrades, run LIVE
environments, etc.<br>
<br>
What I have done in the past is to add a line like
this to the post section of the kickstart:<br>
/usr/sbin/ipa-client-install --domain="<a
moz-do-not-send="true" href="http://ix.test.com"
target="_blank">ix.test.com</a>"
--principal="ipajoinuser" --password="somepassword" -U
-f<br>
<br>
This is not ideal even though the kickstart is saved
in a database and only made available dynamically
trough a php script to the host that's enabled for
kickstarting. It is not saved in a text file on the
disk. The next version will include tighter
integration with IPA where a One Time Password is set
for the host being kickstarted at the time it's
enabled for kickstarting, and this password is seeded
dynamically when the host is served it's kickstart
file.<br>
<br>
The next version will also have the PXE Enrollment
boot image updated to supporting adding new hosts
directly into IPA. The PXE Enrollment is support for
adding a new host simply to PXE booting it, logging
on, and giving it a hostname and assigning it with a
kickstart profile to load the machine directly from
the console of the new machine. <br>
<br>
Adding of machines directly to IPA from the web UI
will also be available in the next version. This
allows you to do everything from adding the host, to
selecting the kickstart profile group, and enabling
for PXE installation/kickstart in 1 step. <br>
<br>
It can also search trough the /var/log/messages file
to find new hosts that's unknown to it's naming
sources and directly add these.<br>
<br>
You can also select a group of machine to install, so
if you have your 150 machines in one group you can
select the entire group for installation.<br>
<br>
<br>
See the project website or contact me for more
information:<br>
<a moz-do-not-send="true"
href="http://sourceforge.net/projects/oneclickkick/"
target="_blank">http://sourceforge.net/projects/oneclickkick/</a><br>
<br>
<br>
</blockquote>
<br>
</div>
</div>
Have you looked at Foreman?<br>
<br>
<blockquote type="cite"> <br>
Regards,<br>
Siggi
<div class="im"><br>
<br>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Freeipa-users mailing list
<a moz-do-not-send="true" href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a>
<a moz-do-not-send="true" href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
</div>
</blockquote>
<br>
<div class="im"> <br>
<pre cols="72">--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
<a moz-do-not-send="true" href="http://www.redhat.com/carveoutcosts/" target="_blank">www.redhat.com/carveoutcosts/</a>
</pre>
</div>
</div>
<br>
_______________________________________________<br>
Freeipa-users mailing list<br>
<a moz-do-not-send="true"
href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a><br>
<a moz-do-not-send="true"
href="https://www.redhat.com/mailman/listinfo/freeipa-users"
target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a><br>
</blockquote>
</div>
<br>
</blockquote>
<br>
<br>
<pre class="moz-signature" cols="72">--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
<a class="moz-txt-link-abbreviated" href="http://www.redhat.com/carveoutcosts/">www.redhat.com/carveoutcosts/</a>
</pre>
</body>
</html>