idm

I have a FreeIPA server with the following information: FreeIPA server: utility.lab.example.com FreeIPA realm: LAB.EXAMPLE.COM FreeIPA domain: lab.example.com I want to add 2 normal users: User Login: rhvadmin, First Name: RHV, Last Name: Admin, Password: CentOS123^ User Login: normaluser, First Name: Normal, Last Name: User, Password: CentOS123^ [root@utility ~]# ipa user-add rhvadmin --first RHV --last Admin --password Password: CentOS123^ Enter Password again to verify: CentOS123^ --------------------- Added user "rhvadmin" --------------------- User login: rhvadmin First name: RHV Last name: Admin Full name: RHV Admin Display name: RHV Admin Initials: RA Home directory: /home/rhvadmin GECOS: RHV Admin Login shell: /bin/sh Principal name: rhvadmin@LAB....

I have a FreeIPA server with the following information. FreeIPA server: utility.lab.example.com FreeIPA realm: LAB.EXAMPLE.COM FreeIPA domain: lab.example.com. I want to insert a few DNS records: hosta.lab.example.com - 172.25.250.10 hostb.lab.example.com - 172.25.250.11 hostc.lab.example.com - 172.25.250.12 hostd.lab.example.com - 172.25.250.13 bastion.lab.example.com - 172.25.250.254 And I’d like to use the command line to do this. Acquire the admin’s Kerberos ticket. [root@utility ~]# kinit admin Password for admin@LAB.EXAMPLE.COM: List the DNS zones. [root@utility ~]# ipa dnszone-find Zone name: 250....

This is my note about installing FreeIPA on a CentOS 8 machine. It’s a bit different from the FreeIPA’s installation on CentOS 7, and most importantly there was a problem I came across during the installation and how to fix it. Configure Static IP [root@utility ~]# nmcli con mod enp1s0 ipv4.addresses 172.25.250.8/24 \ > ipv4.method manual \ > ipv4.gateway 172.25.250.254 \ > ipv4.dns 172.25.252.1 \ > connection.autoconnect yes [root@utility ~]# nmcli con up enp1s0 Ensure the hostname of this server exists in /etc/hosts....

Today I passed the Red Hat Identity Management exa, EX362, with the score of 233/300. The material used to prepare for the exam is the RH362 online course, provided Red Hat. At first I wasn’t sure if I should use of the 5 exam credits (as part of one-year training subscription), but it turned out that IdM/FreeIPA is useful and fun to learn. Here are some tips for this exam:...

While practicing with certificates reqeust using FreeIPA, I came across this duplicated certificates for the first time. This happened because I also practiced the same thing a few weeks ago. Here is how to re-produce this message: [root@client ~]# ipa-getcert request \ -f /etc/vsftpd/certs/cert.pem \ -k /etc/vsftpd/certs/cert.key \ -K ftp/client.lab.example.net \ -D client.lab.example.net Certificate at same location is already used by request with nickname "20201008131445". Because I’m still not familiar yet with FreeIPA on this certificate topic, I turned to Google search and found very useful information on this blog post: Dealing with Duplicate SSL certs from FreeIPA....