[Freeipa-users] Minimal permissions for "joiner" account?
James
purpleidea at gmail.com
Fri Aug 15 00:00:43 UTC 2014
On Thu, Aug 14, 2014 at 7:29 PM, Michael Lasevich
<mlasevich at lasevich.net> wrote:
> Not that much. For one, I am using Salt instead if Puppet, but more
> importantly, if I am reading this correctly it seems to be just using full
> admin account. I can already do that. By orchestration I meant setting up
> the OTP for client join on the server, then passing that OTP to the client
> to join it. It is not that hard to throw together, but timing in this
> process can be problematic. I prefer to avoid it for the moment if I can and
> just create a non-admin account for this.
The point I was trying to make is that the puppet module I linked you
to does all of this automatically for you.
HTH,
James
More information about the Freeipa-users
mailing list