[Freeipa-users] Deploying FreeIPA 1.2.2 on RHEL 5
Loris Santamaria
loris at lgs.com.ve
Thu Nov 5 21:14:25 UTC 2009
El jue, 05-11-2009 a las 15:38 -0500, Sam Hartsfield escribió:
> Hello,
>
> I am interested in deploying FreeIPA along with my company's software
> to allow us to implement Single Sign On. All of our software is
> deployed on Red Hat Enterprise Linux, so I would like to get the
> FreeIPA server to run there (on RHEL 5). I am aware of Red Hat IPA,
> but if I'm not mistaken, it is based on an earlier version that does
> not have the ability to sync to Active Directory.
>
> Most of the dependencies are available either from the official
> package repositories or from EPEL, and Fedora/389 Directory Server has
> its own repository for Enterpise Linux. However, there are two
> packages that are unavailable: 'mod_nss >= 1.0.7-2' and 'slapi-nis'.
One could just use the relevant .src.rpm from Fedora and recompile them
on RHEL. At least I did that with no problems (*) whatsoever several
times with the .src.rpms from Fedora 9 an 10
You can't use directly rpms from Fedora 11 because the formath has
changed slightly, but you can install the .src.rpm in Fedora, and copy
the contents (spec, sources and patches) to RHEL to rebuild it.
(*) You should edit the ipa.spec and change
BuildRequires: popt-devel
to
BuildRequires: popt
> Looking at the commit (f018c2123c2b0018af5d41ec007ac8ddf0f04d31), it
> appears that an earlier version of mod_nss is okay as long as we don't
> need to pass it through mod_proxy. As far as I can tell, slapi-nis is
> used for providing an NIS interface, which I don't think we need
> (RHEL4 and RHEL5 clients should be able to use LDAP for user
> information). Does this sound accurate, or is there anything I'm
> missing? Would it be sufficient to remove these dependencies from the
> RPM spec (for mod_nss just remove the version restriction) before I
> build the package, or would I need to make other modifications? After
> trying it (installing with 'rpm --nodeps'), it appears to work at
> first glance.
>
> Are there any other issues with running on RHEL 5 that I should be
> aware of? Any comments on this configuration?
>
> Thank you,
> Sam Hartsfield
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
--
Loris Santamaria linux user #70506 xmpp:loris at lgs.com.ve
Links Global Services, C.A. http://www.lgs.com.ve
Tel: 0286 952.06.87 Cel: 0414 095.00.10 sip:103 at lgs.com.ve
------------------------------------------------------------
-O9 -omg-optimize -fomit-instructions
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3149 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20091105/ee766f5b/attachment.bin>
More information about the Freeipa-users
mailing list