[Freeipa-users] Remove AD domain in auth commands
Jakub Hrozek
jhrozek at redhat.com
Fri Nov 4 11:12:46 UTC 2016
On Fri, Nov 04, 2016 at 11:04:28AM +0000, James Harrison wrote:
> Hello,
> I've installed FreeIPA 4.2 master using Centos and I have a Windows 2012R2 with its AD schema emulating a Windows 2012 system
> I have established a trust between the two and it appears to work. I can reference a user on the AD domain, but the only way is to add the AD domain.
>
> The only way to ssh to the master IPA server is like this:
>
> ssh "x_xxxx at IPAWIN.LOCAL"@10.10.10.10
> Another example is using kinit:
> I have to do the following to get a credential:kinit x_xxxx at IPAWIN.LOCAL
> Ideally I would not need or use the "@IPAWIN.LOCAL".
>
> Can anyone help?
> Best regards,James Harrison
Currently the only way is to use default_domain_suffix. This might
change in the upcoming version of sssd (1.15)
More information about the Freeipa-users
mailing list