[Freeipa-users] blocking LDAP from DCs
Andy Thompson
Andy.Thompson at e-tcc.com
Fri Apr 10 13:52:02 UTC 2015
> -----Original Message-----
> From: Alexander Bokovoy [mailto:abokovoy at redhat.com]
> Sent: Friday, April 10, 2015 9:42 AM
> To: Andy Thompson
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] blocking LDAP from DCs
>
> On Fri, 10 Apr 2015, Andy Thompson wrote:
> >I am testing out trusts in my sandbox and the ipa-adtrust-install
> >script notes at the end that LDAP should be blocked from the domain
> >controllers. But
> >http://www.freeipa.org/page/Active_Directory_trust_setup notes that
> >it's not needed.
> >
> >Which recommendation is correct?
> Both, considering their timeline :)
>
> We may update ipa-adtrust-install text if it is confusing but it is pretty low
> priority right now.
>
I don't know the relative timelines of each of them :) Probably lower than pretty low as priorities go, I was just curious. I left the firewall rules for now because I figured it wouldn't hurt.
Thanks!
-andy
More information about the Freeipa-users
mailing list