[Freeipa-users] CentOS 7 with IPA 4.1
Steve Justice
sajustice at gmail.com
Tue Jun 30 13:07:30 UTC 2015
All, I am testing an IDM/IPA setup for out RHEL environment.
My current setup.
Windows
sjlab.local - domain one
mylab.local - domain two
sjlab and mylab are two separate AD Domain's sjlab is the primary domain
IDM will be integrated with. sjlab has a one way (outgoing) Forest type
transitive trust with mylab.
Linux
idm.sjlab.local - IDM domain
I have the trust between IDM and sjlab working.
when I perform an ipa trust-show on sjlab.local I see that it is connected
with a trust direction of Two-way trust and type of Active Directory
domain.
I can authenticate with users from sjlab.local to a server on the idm
domain. That all appears to be working ok.
What I cannot do however is authenticate with users from the mylab.local
domain.
When I perform an ipa trust-fetch-domains for sjlab.local it states that no
new domains can be found.
I know the documentation refers to this trust as a transitive trust within
the forest. I have a forest level trust between sjlab and mylab, however
I realize they are not in the same forest. Does that mean that this type
of setup will not work, or is there something I am missing?
Thank you
Steven
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150630/b6be9af7/attachment.htm>
More information about the Freeipa-users
mailing list