<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Wed, Dec 10, 2014 at 6:36 PM, Alon Bar-Lev <span dir="ltr"><<a href="mailto:alonbl@redhat.com" target="_blank">alonbl@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class=""><br></span><span class=""><br>
<br>
</span>it should be even simpler... :)<br>
<br>
1. copy recursive /usr/share/ovirt-engine-extension-aaa-ldap/examples/simple to /etc/ovirt-engine<br>
<br>
2. edit /etc/ovirt-engine/aaa/ldap1.properties, set vars.server, vars.user, vars.password to meet your setup, uncomment ipa on top and comment out the openldap.<br>
<br>
3. until 3.5.1 you should also edit /etc/ovirt-engine/extensions.d/*.properties and replace ../aaa with /etc/ovirt-engine/aaa<br>
<span class=""><font color="#888888"><br>
Alon<br>
</font></span></blockquote></div><br></div><div class="gmail_extra">OK. Done and restarted the engine.</div><div class="gmail_extra"><br></div><div class="gmail_extra">Now in webadmin I see ldap1 as a new profile.</div><div class="gmail_extra">But if from admin in configure I try to give a system permission I have this window with "GO " greyed out...</div><div class="gmail_extra"><a href="https://drive.google.com/file/d/0BwoPbcrMv8mvaGVvVmJpazFwTFk/view?usp=sharing">https://drive.google.com/file/d/0BwoPbcrMv8mvaGVvVmJpazFwTFk/view?usp=sharing</a><br></div><div class="gmail_extra"><br></div><div class="gmail_extra">BTW: I tried my IPA lookup just for trying.... and I'm able to find all the users and also new users defined after migration to the new c7server.... ???</div><div class="gmail_extra"><a href="https://drive.google.com/file/d/0BwoPbcrMv8mvbks2cmlhSmJjdnc/view?usp=sharing">https://drive.google.com/file/d/0BwoPbcrMv8mvbks2cmlhSmJjdnc/view?usp=sharing</a><br></div><div class="gmail_extra"><br></div><div class="gmail_extra">Gianluca</div></div>