[Freeipa-users] Unable to authenticate a client user against IPA
Dmitri Pal
dpal at redhat.com
Thu Mar 3 23:22:44 UTC 2011
On 03/03/2011 02:31 PM, Dmitri Pal wrote:
> On 03/03/2011 02:21 PM, Steven Jones wrote:
>> I appear to have IPA running, I have run the install client on a fed14
>> KVM guest and that guest is in the IPA system, however the users in IPA
>> cannot authenticate via IPA and get onto the client. There appears to
>> be traffic to port 389, so I assume its "almost" working....but I can
>> find anything in logs to say whats wrong....not that I can determine
>> what logs to check.....Ive been looking in /var/log so far....are there
>> any other logs about?
>>
>> And/or where do I start looking to get this working?
>>
>> regards
>>
>>
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users
> Are you planning to use pam_ldap + nss_ldap or SSSD?
> If SSSD have you installed SSSD packages first?
>
> The pam and nss config files as well as SSSD config and SSSD logs if it
> is in picture together with ipa-client-install logs would be a good
> starting point to troubleshoot the issue.
>
Sorry but the doc might be incomplete. We are in the middle of reviewing
it actually and adding information to it.
Please go to your system-authconfig dialog and configure LDAP + Kerberos
with the IPA server. It should be intuitive.
It will update all the right config files.
The logs are in the sub-directory under /var/log.
The name starts with ipa but I do not remember the exact name from the
top of my head.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
More information about the Freeipa-users
mailing list