Re: [ovirt-users] FreeIPA

22 Sep 2015

      ------=_Part_91117_410636740.1442937460885
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

Here is what I'm trying to do: 

Ovirt engine : engine.domain.tld 
Freeipa 4.1.0 : ipa.domain.tld 

I have installed on the engine: 
ovirt-engine-extension-aaa-ldap 
openldap-clients 

/etc/ovirt-engine/aaa/profile1.properties: 
# 
# Select one 
# 
#include = <openldap.properties> 
#include = <389ds.properties> 
#include = <rhds.properties> 
include = <ipa.properties> 
#include = <iplanet.properties> 
#include = <rfc2307.properties> 
#include = <rfc2307-openldap.properties> 

# 
# Server 
# 
vars.server = ipa.domain.tld 

# 
# Search user and its password. 
# 
vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld 
vars.password = ipa_admin_password 

pool.default.serverset.single.server = ${global:vars.server} 
pool.default.auth.simple.bindDN = ${global:vars.user} 
pool.default.auth.simple.password = ${global:vars.password} 

# Create keystore, import certificate chain and uncomment 
# if using ssl/tls. 
#pool.default.ssl.startTLS = true 
#pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks 
#pool.default.ssl.truststore.password = changeit 

On the engine cannot find any users configured on the ipa server. 

Any help? 

Thanks 

Jose 

----- Mensagem original -----

De: "Alon Bar-Lev" <alonbl@redhat.com> 
Para: suporte@logicworks.pt 
Cc: "users" <users@ovirt.org> 
Enviadas: Sexta-feira, 18 De Setembro de 2015 15:48:22 
Assunto: Re: [ovirt-users] FreeIPA 

----- Original Message -----
...
From: suporte@logicworks.pt 
To: "users" <users@ovirt.org> 
Sent: Friday, September 18, 2015 5:45:18 PM 
Subject: [ovirt-users] FreeIPA
Hi,
Is there any documentation about FreeIPA integration with oVirt 3.5 and how 
to configure it?
Hi, 

Please find documentation at [1][2]. 

Regards, 
Alon Bar-Lev. 

[1] http://www.ovirt.org/Features/AAA 
[2] https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob... 

------=_Part_91117_410636740.1442937460885
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html><body><div style=3D"font-family: Times New Roman; font-size: 10pt; co=
lor: #000000"><div>Here is what I'm trying to do:<br></div><div><br>Ovirt e=
ngine : engine.domain.tld<br></div><div>Freeipa 4.1.0 : ipa.domain.tld<br><=
/div><div><br></div><div>I have installed on the engine: <pre class=3D"west=
ern" style=3D"margin-bottom: 0.5cm;" data-mce-style=3D"margin-bottom: 0.5cm=
;"><i>ovirt-engine-extension-aaa-ldap</i><br></pre><pre class=3D"western" s=
tyle=3D"margin-bottom: 0.5cm;" data-mce-style=3D"margin-bottom: 0.5cm;"><i>=
openldap-clients</i><br><br>/etc/ovirt-engine/aaa/profile1.properties:<br>#=
<br># Select one<br>#<br>#include =3D <openldap.properties><br>#inclu=
de =3D <389ds.properties><br>#include =3D <rhds.properties><br>=
include =3D <ipa.properties><br>#include =3D <iplanet.properties&g=
t;<br>#include =3D <rfc2307.properties><br>#include =3D <rfc2307-o=
penldap.properties><br><br>#<br># Server<br>#<br>vars.server =3D ipa.dom=
ain.tld<br><br>#<br># Search user and its password.<br>#<br>vars.user =3D u=
id=3Dsearch,cn=3Dusers,cn=3Daccounts,dc=3Ddomain,dc=3Dtld<br>vars.password =
=3D <em>ipa_admin_password</em><br><br>pool.default.serverset.single.server=
 =3D ${global:vars.server}<br>pool.default.auth.simple.bindDN =3D ${global:=
vars.user}<br>pool.default.auth.simple.password =3D ${global:vars.password}=
<br><br># Create keystore, import certificate chain and uncomment<br># if u=
sing ssl/tls.<br>#pool.default.ssl.startTLS =3D true<br>#pool.default.ssl.t=
ruststore.file =3D ${local:_basedir}/${global:vars.server}.jks<br>#pool.def=
ault.ssl.truststore.password =3D changeit<br><br><br>On the engine cannot f=
ind any users configured on the ipa server.<br><br>Any help?<br><br>Thanks<=
br><br>Jose<br></pre><br></div><div><br></div><hr id=3D"zwchr"><div style=
=3D"color:#000;font-weight:normal;font-style:normal;text-decoration:none;fo=
nt-family:Helvetica,Arial,sans-serif;font-size:12pt;" data-mce-style=3D"col=
or: #000; font-weight: normal; font-style: normal; text-decoration: none; f=
ont-family: Helvetica,Arial,sans-serif; font-size: 12pt;"><b>De: </b>"Alon =
Bar-Lev" <alonbl@redhat.com><br><b>Para: </b>suporte@logicworks.pt<br=
...
<b>Cc: </b>"users" <users@ovirt.org><br><b>Enviadas: </b>Sexta-feira=
, 18 De Setembro de 2015 15:48:22<br><b>Assunto: </b>Re: [ovirt-users] Free=
IPA<br><div><br></div><br><div><br></div>----- Original Message -----<br>&g=
t; From: suporte@logicworks.pt<br>> To: "users" <users@ovirt.org><=
br>> Sent: Friday, September 18, 2015 5:45:18 PM<br>> Subject: [ovirt=
-users] FreeIPA<br>> <br>> Hi,<br>> <br>> Is there any document=
ation about FreeIPA integration with oVirt 3.5 and how<br>> to configure=
 it?<br>> <br><div><br></div>Hi,<br><div><br></div>Please find documenta=
tion at [1][2].<br><div><br></div>Regards,<br>Alon Bar-Lev.<br><div><br></d=
iv>[1] http://www.ovirt.org/Features/AAA<br>[2] https://gerrit.ovirt.org/gi=
tweb?p=3Dovirt-engine-extension-aaa-ldap.git;a=3Dblob;f=3DREADME;hb=3Dovirt=
-engine-extension-aaa-ldap-1.0<br></div><div><br></div></div></body></html>
------=_Part_91117_410636740.1442937460885--

Re: [ovirt-users] FreeIPA

suporte＠logicworks.pt