[Freeipa-users] Installed ipa-client for CentOS 5.9 and joined it to IPA-domain, but hows AD trusts are handled?
Jakub Hrozek
jhrozek at redhat.com
Thu Mar 28 12:27:16 UTC 2013
On Thu, Mar 28, 2013 at 01:14:34PM +0200, Pekka.Panula at sofor.fi wrote:
> Hi all again
>
> I have lots of CentOS 5.x servers and i tested one to install ipa-client
> and managed to join it to my ipa domain.
>
> I want also my AD users (from IPA trust) to login inside thru ssh but
> afaik this seems to have some older SSSD version and same configuration
> options that goes ok with CentOS 6 ipa-client wont work with CentOS 5.
>
> So what should i modify that i can login to my CentOS 5 machine that i can
> to login AD trust users from IPA? Is there newer SSSD daemon available for
> centos 5?
>
No, it is not and it would be quite hard to build it, I think. You'd
need pretty recent version of Kerberos to support the PAC responder that
handles users coming via trusts for instance.
More information about the Freeipa-users
mailing list