[Freeipa-users] FreeIPA in a locked down Active Directory environment

David Juran djuran at redhat.com
Tue Jun 19 13:44:34 UTC 2012

On tis, 2012-06-19 at 13:26 +0100, James Hogarth wrote:
> > I wonder if the (very) new IPA AD trust feature could solve at least
> > some of your problems. Have a look at
> > http://freeipa.org/page/IPAv3_testing_AD_trust for some info on how this
> > can be tested.
> >
> The initial documentation looks like it's describing a full two way
> trust - in principal would a one way trust be feasible?
> Allow the AD users (or a selection thereof) access to the systems part
> of the IPA domain but not vice versa?

AFAIK, that is the only thing currently implemented.

David Juran
Sr. Consultant
Red Hat
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120619/a8081874/attachment.sig>

More information about the Freeipa-users mailing list