[Freeipa-users] can migrate-ds be safely re-run if it failed...
Alexander Bokovoy
abokovoy at redhat.com
Tue Mar 29 09:37:19 UTC 2016
On Tue, 29 Mar 2016, lejeczek wrote:
>>>last - this must most FAQ people wonder - can IPA's 389 backend be
>>>used in the same/similar fashion samba uses ldap? skipping all the
>>>kerberos bits? (samba & IPA on the same one box)
>>For Samba and IPA on the same box, this is configured properly with
>>ipa-adtrust-install.
>when I started I thought to make this samba<=>ipa chatter more
>constructive I should do ... so I wound up with samba(@openldap)
>having/using the same DN as IPA has in 389.
>Will it work to do ipa-addtrust-install on that one box with samba+ipa
>?
Can you please re-phrase your question? What "it"? What "would work"?
I've said several times that on IPA master all you need to run is
ipa-adtrust-install and then user 'net conf addshare/delshare/setparm'
to configure specific shares, and use POSIX ACLs in your file system to
define access rules.
See
https://www.redhat.com/archives/freeipa-users/2013-April/msg00270.html
for a demo
--
/ Alexander Bokovoy
More information about the Freeipa-users
mailing list