Kolab + FreeIPA
Matt .
yamakasi.014 at gmail.com
Wed Nov 12 22:46:49 CET 2014
That is indeed a little bit vague, I was not 100% sure on IRC how this
would be looked like too... here is the log:
11:52 < kanarip> YamakasY, how you use ldap is really your choice, you
don't have to do any hierarchy
11:52 < kanarip> kolab consumes ldap, it doesn't have any requirements to ldap
11:53 < YamakasY> kanarip: but for shared stuff it needs it it seems,
have you seen the mailing from Carlos about what he did on freeipa,
which is flat ?
11:53 < kanarip> create the user accounts kolab uses, wherever you
create them, and set all of the *base_dn options to whatever root you
will want to search
for objects
11:54 < YamakasY> but what about shared ?
11:54 < YamakasY> that seems to need an OU ?
11:54 < YamakasY> ou != group
11:55 < kanarip> who shared, what shared?
11:56 < YamakasY> kanarip: sharedfolder_base_dn, etc
11:57 < kanarip> ...
11:57 < YamakasY> kanarip: that are ou's
11:59 < kanarip> those are search base dns
11:59 < kanarip> whether in a hierarchy or in a flat tree, all
searches require a base dn
12:00 < kanarip> ergo ...
12:00 < kanarip> set this to the base dn of the flat hierarchy
12:00 < YamakasY> ok, for all the three ou's?
12:01 < kanarip> ...
2014-11-12 22:39 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
> El 12/11/14 a las 16:26, Matt . escribió:
>
>> Hi,
>>
>> I missed that line, thanks for that!
>>
>> The guys from Kolab say we just can set the OU's to base_dn and that
>> would be it. Have you tested that ?
>>
>> Cheers,
>>
>> Matt
>>
>> 2014-11-12 21:58 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
>>>
>>> El 11/11/14 a las 17:44, Matt . escribió:
>>>
>>>> This looks good indeed, and this works as you say ?
>>>>
>>>> I wonder what happens with IPA replication...
>>>>
>>>> 2014-11-11 22:50 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
>>>>>
>>>>> El 11/11/14 a las 16:15, Matt . escribió:
>>>>>
>>>>>> We should be able to use something different than OU's for these 3, I
>>>>>> wonder what, groups maybe ?
>>>>>>
>>>>>> 2014-11-11 21:53 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
>>>>>>>
>>>>>>> El 11/11/14 a las 15:32, Matt . escribió:
>>>>>>>
>>>>>>>> True, but can't we use them as groups ?...
>>>>>>>>
>>>>>>>> Please respond to the mailinglist as well! replyToAll
>>>>>>>>
>>>>>>>> 2014-11-11 21:29 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
>>>>>>>>>
>>>>>>>>> El 11/11/14 a las 15:08, Matt . escribió:
>>>>>>>>>
>>>>>>>>>> Yes I have seen but can't we ditch the OU's just simply ?
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-11-11 21:06 GMT+01:00 Carlos R Laguna <carlosr at jovenclub.cu>:
>>>>>>>>>>>
>>>>>>>>>>> El 11/11/14 a las 14:49, Matt . escribió:
>>>>>>>>>>>
>>>>>>>>>>>> Hi Carlos,
>>>>>>>>>>>>
>>>>>>>>>>>> I'm debugging wit the IPA guys but how did you add the OU's as
>>>>>>>>>>>> FreeIPA
>>>>>>>>>>>> is flat dit and doesn't know OU's... the same for the object,
>>>>>>>>>>>> that
>>>>>>>>>>>> should already be in there.
>>>>>>>>>>>>
>>>>>>>>>>>> I hope to hear.
>>>>>>>>>>>>
>>>>>>>>>>>> Cheers,
>>>>>>>>>>>>
>>>>>>>>>>>> Matt
>>>>>>>>>>>>
>>>>>>>>>>>> 2014-11-11 20:02 GMT+01:00 Matt . <yamakasi.014 at gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>> Hi Carlos,
>>>>>>>>>>>>>
>>>>>>>>>>>>> How have you added the OU's and that Object to FreeIPA ? this
>>>>>>>>>>>>> cannot
>>>>>>>>>>>>> be done from the UI can it ?
>>>>>>>>>>>>>
>>>>>>>>>>>>> Some directions would be great.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Cheers,
>>>>>>>>>>>>>
>>>>>>>>>>>>> Matt
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2014-11-11 0:05 GMT+01:00 Carlos R Laguna
>>>>>>>>>>>>> <carlosr at jovenclub.cu>:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> El 10/11/14 a las 17:59, Matt . escribió:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> It's an internal testsetup, so I think he doesn care, but the
>>>>>>>>>>>>>>> advise
>>>>>>>>>>>>>>> is
>>>>>>>>>>>>>>> good!
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2014-11-10 23:10 GMT+01:00 Torsten Grote <torsten at kolab.org>:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 11/11/2014 05:35 AM, Carlos R Laguna wrote:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> bind_pw = nos4a287
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> If that's your actual password, you might want to change
>>>>>>>>>>>>>>>> that
>>>>>>>>>>>>>>>> now
>>>>>>>>>>>>>>>> ;)
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Kind Regards,
>>>>>>>>>>>>>>>> Torsten
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Torsten Grote
>>>>>>>>>>>>>>>> Kolab.org Community Manager
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> e: torsten at kolab.org
>>>>>>>>>>>>>>>> w: https://Kolab.org
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> pgp: 0x2175A534A4F2EFA3
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> _______________________________________________
>>>>>>>>>>>>>>>> users mailing list
>>>>>>>>>>>>>>>> users at lists.kolab.org
>>>>>>>>>>>>>>>> https://lists.kolab.org/mailman/listinfo/users
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> _______________________________________________
>>>>>>>>>>>>>>> users mailing list
>>>>>>>>>>>>>>> users at lists.kolab.org
>>>>>>>>>>>>>>> https://lists.kolab.org/mailman/listinfo/users
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Yes is a testlab.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ________________________________________________________________
>>>>>>>>>>>>>> XII Edicion del Evento Nacional de Informatica para Jovenes.
>>>>>>>>>>>>>> INFOCLUB.
>>>>>>>>>>>>>> Abril. 2015. Ver www.jovenclub.cu
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ________________________________________________________________
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Este mensaje ha sido analizado por MailScanner
>>>>>>>>>>>>>> en busca de virus y otros contenidos peligrosos,
>>>>>>>>>>>>>> y se considera que está limpio.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> _______________________________________________
>>>>>>>>>>>>>> users mailing list
>>>>>>>>>>>>>> users at lists.kolab.org
>>>>>>>>>>>>>> https://lists.kolab.org/mailman/listinfo/users
>>>>>>>>>>>
>>>>>>>>>>> That is a tricky part it cant by made using the command line
>>>>>>>>>>> utilitys
>>>>>>>>>>> susch
>>>>>>>>>>> as ldapmodify and .ldif files or using LDAP Apache Directory
>>>>>>>>>>> Studio
>>>>>>>>>>> or
>>>>>>>>>>> any
>>>>>>>>>>> other tool feature like. Regards
>>>>>>>>>>>
>>>>>>>>>>> ________________________________________________________________
>>>>>>>>>>> XII Edicion del Evento Nacional de Informatica para Jovenes.
>>>>>>>>>>> INFOCLUB.
>>>>>>>>>>> Abril. 2015. Ver www.jovenclub.cu
>>>>>>>>>>> ________________________________________________________________
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Este mensaje ha sido analizado por MailScanner
>>>>>>>>>>> en busca de virus y otros contenidos peligrosos,
>>>>>>>>>>> y se considera que está limpio.
>>>>>>>>>>>
>>>>>>>>> If you do that then you will unable to use Share Folder, Dynamic
>>>>>>>>> and
>>>>>>>>> Static
>>>>>>>>> list. I do not know any other restriction that may bring. Regards
>>>>>>>>>
>>>>>>>>> ________________________________________________________________
>>>>>>>>> XII Edicion del Evento Nacional de Informatica para Jovenes.
>>>>>>>>> INFOCLUB.
>>>>>>>>> Abril. 2015. Ver www.jovenclub.cu
>>>>>>>>> ________________________________________________________________
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Este mensaje ha sido analizado por MailScanner
>>>>>>>>> en busca de virus y otros contenidos peligrosos,
>>>>>>>>> y se considera que está limpio.
>>>>>>>>>
>>>>>>>> _______________________________________________
>>>>>>>> users mailing list
>>>>>>>> users at lists.kolab.org
>>>>>>>> https://lists.kolab.org/mailman/listinfo/users
>>>>>>>
>>>>>>> Can you explain a little bit further, what you intend to user as
>>>>>>> group
>>>>>>> ?
>>>>>>> Regards
>>>>>>>
>>>>>>> ________________________________________________________________
>>>>>>> XII Edicion del Evento Nacional de Informatica para Jovenes.
>>>>>>> INFOCLUB.
>>>>>>> Abril. 2015. Ver www.jovenclub.cu
>>>>>>> ________________________________________________________________
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Este mensaje ha sido analizado por MailScanner
>>>>>>> en busca de virus y otros contenidos peligrosos,
>>>>>>> y se considera que está limpio.
>>>>>>>
>>>>>> _______________________________________________
>>>>>> users mailing list
>>>>>> users at lists.kolab.org
>>>>>> https://lists.kolab.org/mailman/listinfo/users
>>>>>
>>>>> Maybe, however i tried to mimic Kolab 389-ds structure, to mess around
>>>>> as
>>>>> little as i could with the rest of kolab's component. I send some
>>>>> screen
>>>>> shot . Regards
>>>>>
>>>>>
>>>>> ________________________________________________________________
>>>>> XII Edicion del Evento Nacional de Informatica para Jovenes. INFOCLUB.
>>>>> Abril. 2015. Ver www.jovenclub.cu
>>>>> ________________________________________________________________
>>>>>
>>>>> --
>>>>> Este mensaje ha sido analizado por MailScanner
>>>>> en busca de virus y otros contenidos peligrosos,
>>>>> y se considera que está limpio.
>>>>>
>>> I made that same question, this was the answer.
>>> https://www.redhat.com/archives/freeipa-users/2014-July/msg00008.html
>>>
>>>
>>> Regards
>>> ________________________________________________________________
>>> XII Edicion del Evento Nacional de Informatica para Jovenes. INFOCLUB.
>>> Abril. 2015. Ver www.jovenclub.cu
>>> ________________________________________________________________
>>>
>>>
>>> --
>>> Este mensaje ha sido analizado por MailScanner
>>> en busca de virus y otros contenidos peligrosos,
>>> y se considera que está limpio.
>>>
>>> _______________________________________________
>>> users mailing list
>>> users at lists.kolab.org
>>> https://lists.kolab.org/mailman/listinfo/users
>
> No, but i am curious. How the structure with look like then? Regards
>
> ________________________________________________________________
> XII Edicion del Evento Nacional de Informatica para Jovenes. INFOCLUB.
> Abril. 2015. Ver www.jovenclub.cu
> ________________________________________________________________
>
>
> --
> Este mensaje ha sido analizado por MailScanner
> en busca de virus y otros contenidos peligrosos,
> y se considera que está limpio.
>
> _______________________________________________
> users mailing list
> users at lists.kolab.org
> https://lists.kolab.org/mailman/listinfo/users
More information about the users
mailing list