[Freeipa-users] Add user principal with admin privilege
Eldo Joseph
jeldo26 at live.com
Fri Jul 18 15:22:13 UTC 2014
To create user/host principal... In case if we want to integrate with cloudera
On 18/07/2014 8:48 pm, Rob Crittenden <rcritten at redhat.com> wrote:
Eldo Joseph wrote:
> So can we have a user have with admin privilege or same as admin
admin privilege to do what?
rob
>
> On 18/07/2014 7:04 pm, Martin Kosek <mkosek at redhat.com> wrote:
> On 07/18/2014 03:16 PM, Eldo Joseph wrote:
>> Hi,
>>
>> Is it possible to add a user principal with admin privileges.
>>
>> like kadmin: addprinc -randkey user1/admin at DOMAIN.COM
>>
>> when ever tried I got this
>> "Kerberos database constraints violated"
>>
>>
>> Thanks,
>> Eldo
>
> We do not allow adding principals by kadmin on purpose. Kerberos
> principals of
> FreeIPA user/service/host are being added via FreeIPA commands which
> fills all
> required and expected attributes.
>
> We are considering allowing adding external realm principal though,
> ticket filed:
>
> https://fedorahosted.org/freeipa/ticket/4059
> https://bugzilla.redhat.com/show_bug.cgi?id=1035494#c3
>
> HTH,
> Martin
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140718/2a5c2c4f/attachment.htm>
More information about the Freeipa-users
mailing list