Fedora 20
Sponsored Link

Configure IPA Client2013/12/27

Configure IPA Client
[1] Install IPA Client
[root@www ~]#
vi /etc/hosts
# add own IP address and hostname www.srv.world www
[root@www ~]#
yum -y install freeipa-client
[2] Setup IPA Client
[root@www ~]#
# setup

DNS discovery failed to determine your DNS domain
Please provide the domain name of your IPA server (ex: example.com):

DNS discovery failed to find the IPA Server
Please provide your IPA server name (ex: ipa.example.com):
The failure to use DNS to find your IPA server indicates that your
resolv.conf file is not properly configured.
Autodiscovery of servers for failover cannot work with this configuration.
If you proceed with the installation, services will be configured to always
access the discovered server for all operation and will not fail over to
other servers in case of failure.
Proceed with fixed values and no DNS discovery? [no]:

Hostname: www.srv.world
DNS Domain: srv.world
IPA Server: dlp.srv.world
BaseDN: dc=srv,dc=world
Continue to configure the system with these values? [no]:

User authorized to enroll computers:

Synchronizing time with KDC...
Password for admin@SRV.WORLD:
# IPA admin password

Successfully retrieved CA cert
    Subject:     CN=Certificate Authority,O=SRV.WORLD
    Issuer:      CN=Certificate Authority,O=SRV.WORLD
    Valid From:  Thu Dec 26 08:17:57 2013 UTC
    Valid Until: Mon Dec 26 08:17:57 2033 UTC

Enrolled in IPA realm SRV.WORLD
Created /etc/ipa/default.conf
New SSSD config will be created
Configured /etc/sssd/sssd.conf
Configured /etc/krb5.conf for IPA realm SRV.WORLD
trying https://dlp.srv.world/ipa/xml
Forwarding 'env' to server 'https://dlp.srv.world/ipa/xml'
Adding SSH public key from /etc/ssh/ssh_host_dsa_key.pub
Adding SSH public key from /etc/ssh/ssh_host_rsa_key.pub
Forwarding 'host_mod' to server 'https://dlp.srv.world/ipa/xml'
Could not update DNS SSHFP records.
SSSD enabled
Configured /etc/openldap/ldap.conf
Unable to find 'admin' user with 'getent passwd admin'!
Recognized configuration: SSSD
NTP enabled
Configured /etc/ssh/ssh_config
Configured /etc/ssh/sshd_config
Client configuration complete.

[root@www ~]#
vi /etc/pam.d/system-auth
# add if you need ( create home directory automatically if it's none )

session     optional      pam_mkhomedir.so skel=/etc/skel umask=077

[root@www ~]#
systemctl enable sssd

ln -s '/usr/lib/systemd/system/sssd.service' '/etc/systemd/system/multi-user.target.wants/sssd.service'
[root@www ~]#
# logout

Fedora release 20 (Heisenbug)
Kernel 3.12.5-302.fc20.x86_64 on an x86_64 (ttyS0)
www login::
# IPA user

# password

Password expired. Change your password now.  
# required to change password if first-time login

Current Password:
# current password

New password:
# new one

Retype new password:
Creating directory '/home/ubuntu'.
[ubuntu@www ~]$
# just logined

Matched Content