------=_Part_48839715_2061586021.1355812226098 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable No,=20 Have you tried to perform authentication using this user regardless of oVir= t?=20 My speculation (Pavel, Oved , can you approve?)=20 it seems like your password policy might require to change the password at = first login (I saw such password policy at ActiveDirectory ).=20 Yair=20 ----- Original Message -----
From: "victor nunes" <victor.rebli@gmail.com> To: "Yair Zaslavsky" <yzaslavs@redhat.com> Cc: users@ovirt.org Sent: Tuesday, December 18, 2012 3:36:15 AM Subject: Re: [Users] tool engine-manage-domains
So returning.
I got a machine, I installed Fedora 17 on it. With that I managed to install FreeIPA. FreeIPA configured, and managed to add the domain with the tool "oVirt-manage-domains".
Created in FreeIPA users, set their passwords. I gave permission for them. However, I can only login with the admin user in the new domain. With users that I created, is giving the following message:
Can not Login. User Password has expired, Please change your password.
So, I need to give any more permission for users to login?
Att,
2012/12/6 Yair Zaslavsky < yzaslavs@redhat.com >
From: "victor nunes" < victor.rebli@gmail.com > =20 =20 To: "Yair Zaslavsky" < yzaslavs@redhat.com > =20 =20 Cc: users@ovirt.org , "Itamar Heim" < iheim@redhat.com > =20 =20 Sent: Thursday, December 6, 2012 2:14:49 AM =20 =20
Subject: Re: [Users] tool engine-manage-domains =20 =20
Hello, =20 =20
I'm going to do all these tests, but a question. =20 =20
I need to configure Kerberos on the server LDAP? =20 =20
Att, =20 =20 Yes. =20
2012/12/4 Yair Zaslavsky < yzaslavs@redhat.com > =20 =20
Hi, =20 =20 =20 Several things - =20 =20 =20 a. I think logging at this point should be improved =20 =20 =20 b. Since the log is not informative enough, please try the following: =20 =20 =20 1. Check that your credentials are correct =20 =20 =20 2. Check you have no clock skew issue (the time difference between the machine running manage-domains and your ldap server should be less or equal to 5 minutes). =20 =20 =20 3. Connection refused so there is some connectivity issue - =20 =20 =20 please query your ldap SRV records for the domain (IMHO dig SRV _ldap._tcp. viperde.com.br should do the trick) =20 =20 =20 please try to connect to these ldap servers manually - =20 =20 =20
For example, if the returned host from the dig SRV query is =20 =20 =20 aaa.viperde.com.br =20 =20 =20
perform: =20 =20 =20 telnet aaa.viperde.com.br 389 =20 =20 =20
Turns out that I did not have telnet installed on my fc17 machine - =20 =20 =20 I used yum install telnet to install it. =20 =20 =20
Kind regards, =20 =20 =20
Yair =20 =20 =20
From: "victor nunes" < victor.rebli@gmail.com > =20 =20 =20 =20 To: "Itamar Heim" < iheim@redhat.com > =20 =20 =20 =20 Cc: "Yair Zaslavsky" < yzaslavs@redhat.com >, users@ovirt.org =20 =20 =20 =20 Sent: Tuesday, December 4, 2012 3:28:56 AM =20 =20 =20 =20 Subject: Re: [Users] tool engine-manage-domains =20 =20 =20 =20
Thanks for the reply. =20 =20 =20 =20
I do not have another machine to the power configuar FreeIPA. =20 =20 =20 =20
I have a machine, I do not have access, which is an LDAP server installed on it. =20 =20 =20 =20 I configured a machine that is oVirt-manage as ldap client, I configured the dns, but in time to include the domain happens the following error: =20 =20 =20 =20
Error: exception message: Connection refused =20 =20 =20 =20 Failure while testing domain viprede.com.br . Details: Kerberos error. Please check log for further Top details. =20 =20 =20 =20
in the logs, I have the following lines: =20 =20 =20 =20
03/12/2012 20:25:26,390 INFO [org.ovirt.engine.core.utils.kerberos.ManageDomains] Creating kerberos configuration for domain (s): viprede.com.br =20 =20 =20 =20 03/12/2012 20:25:26,422 INFO [org.ovirt.engine.core.utils.kerberos.ManageDomains] Successfully created kerberos configuration for domain (s): viprede.com.br =20 =20 =20 =20 03/12/2012 20:25:26,422 INFO [org.ovirt.engine.core.utils.kerberos.ManageDomains] Testing kerberos configuration for domain: viprede.com.br . =20 =20 =20 =20
So what could be this error? =20 =20 =20 =20
2012/11/29 Itamar Heim < iheim@redhat.com > =20 =20 =20 =20
On 11/29/2012 05:58 AM, victor nunes wrote: =20 =20 =20 =20 =20
> 2012/11/29 Yair Zaslavsky < yzaslavs@redhat.com <mailto: > yzaslavs@redhat.com >> =20 =20 =20 =20 =20 =20
> Hi, =20 =20 =20 =20 =20 =20 > Can you redirect your question to users@ovirt.org =20 =20 =20 =20 =20 =20 > <mailto: users@ovirt.org >? =20 =20 =20 =20 =20 =20
> I think others will help you to forward your question to > relevant =20 =20 =20 =20 =20 =20 > people here (not sure I can provide a good answer). =20 =20 =20 =20 =20 =20
> On 11/29/2012 03:26 AM, victor nunes wrote: =20 =20 =20 =20 =20 =20
> So I'm trying to install FreeIPA on the same machine that =20 =20 =20 =20 =20 =20 > oVirt-manage, =20 =20 =20 =20 =20 =20 > but at the time of installation, the following error > occurs: =20 =20 =20 =20 =20 =20
> FreeIPA-server conflicts with 1: > mod_ssl-2.2.22-4.fc17.x86_64 =20 =20 =20 =20 =20 =20
> Looking for a solution to the problem, I discovered that > this > is =20 =20 =20 =20 =20 =20 > a bug =20 =20 =20 =20 =20 =20 > reported by others. =20 =20 =20 =20 =20 =20
> Follow the link to the bug reported: =20 =20 =20 =20 =20 =20 > https://bugzilla.redhat.com/__ show_bug.cgi?id=3D840098 =20 =20 =20 =20 =20 =20
> < https://bugzilla.redhat.com/ show_bug.cgi?id=3D840098 > =20 =20 =20 =20 =20 =20
> Then, using oo FreeIPA not be possible, which otherwise I > have =20 =20 =20 =20 =20 =20 > to add =20 =20 =20 =20 =20 =20 > new domains and users? =20 =20 =20 =20 =20 =20
> Em 8 de novembro de 2012 02:41, Yair Zaslavsky =20 =20 =20 =20 =20 =20 > < yzaslavs@redhat.com <mailto: yzaslavs@redhat.com > =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com <mailto: yzaslavs@redhat.com > >>> > escreveu: =20 =20 =20 =20 =20 =20
> Hi, =20 =20 =20 =20 =20 =20 > You cannot create new users for the internal domain. =20 =20 =20 =20 =20 =20 > The internal domain was developed for quick POC, just to =20 =20 =20 =20 =20 =20 > allow login =20 =20 =20 =20 =20 =20 > to the system without the need for ldap provider. =20 =20 =20 =20 =20 =20 > I recommend you install some ldap server (i.e - free IPA) =20 =20 =20 =20 =20 =20 > and try to =20 =20 =20 =20 =20 =20 > work with it. =20 =20 =20 =20 =20 =20
> On 11/08/2012 01:08 AM, victor nunes wrote: =20 =20 =20 =20 =20 =20
> Sorry. =20 =20 =20 =20 =20 =20
> Att, =20 =20 =20 =20 =20 =20
> 2012/11/7 victor nunes < victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com > =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com >__> =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com > <mailto: > victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com >__>__>> =20 =20 =20 =20 =20 =20
> Thanks for the reply. =20 =20 =20 =20 =20 =20
> As the command "engine-manage-domains" works with =20 =20 =20 =20 =20 =20 > ldap, how =20 =20 =20 =20 =20 =20 > can I =20 =20 =20 =20 =20 =20 > create another user in the field "internal", and user =20 =20 =20 =20 =20 =20 > "admin" that =20 =20 =20 =20 =20 =20 > is created when you installed the engine-setup? =20 =20 =20 =20 =20 =20
> 2012/11/4 Yair Zaslavsky < yzaslavs@redhat.com =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com > =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com <mailto: yzaslavs@redhat.com > >> =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com > <mailto: > yzaslavs@redhat.com =20 =20 =20 =20 =20 =20 > <mailto: yzaslavs@redhat.com >>> > =20 =20 =20 =20 =20 =20
> Hi, =20 =20 =20 =20 =20 =20 > The specified tool handle only ldap domains, =20 =20 =20 =20 =20 =20 > and not the =20 =20 =20 =20 =20 =20 > internal domain. =20 =20 =20 =20 =20 =20 > What would you like to change at the internal =20 =20 =20 =20 =20 =20 > domain? =20 =20 =20 =20 =20 =20 > I suggest you try to use engine-config for this. =20 =20 =20 =20 =20 =20
> ------------------------------ > ____-------------------------- > --__--__------------ =20 =20 =20 =20 =20 =20
> *From: *"victor nunes" =20 =20 =20 =20 =20 =20 > < victor.rebli@gmail.com <mailto: victor.rebli@gmail.com > > =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com >__> =20 =20 =20 =20 =20 =20
> <mailto: victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com > =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com =20 =20 =20 =20 =20 =20 > <mailto: victor.rebli@gmail.com >__>__>> =20 =20 =20 =20 =20 =20
> *To: * users@ovirt.org =20 =20 =20 =20 =20 =20 > <mailto: users@ovirt.org > <mailto: users@ovirt.org =20 =20 =20 =20 =20 =20 > <mailto: users@ovirt.org >> =20 =20 =20 =20 =20 =20 > <mailto: users@ovirt.org <mailto: users@ovirt.org > =20 =20 =20 =20 =20 =20 > <mailto: users@ovirt.org <mailto: users@ovirt.org >>> =20 =20 =20 =20 =20 =20
> *Sent: *Sunday, November 4, 2012 12:18:55 AM =20 =20 =20 =20 =20 =20 > *Subject: *[Users] tool engine-manage-domains =20 =20 =20 =20 =20 =20
> I'm trying to change the default domain, the =20 =20 =20 =20 =20 =20 > "internal" with =20 =20 =20 =20 =20 =20 > the following command: =20 =20 =20 =20 =20 =20
> engine-manage-domains -action=3Dedit =20 =20 =20 =20 =20 =20 > -domain=3Dinternal =20 =20 =20 =20 =20 =20
> However, i am getting the following message: =20 =20 =20 =20 =20 =20
> "Domain internal doesn't exist int the =20 =20 =20 =20 =20 =20 > configuration" =20 =20 =20 =20 =20 =20
> This is my domain admin user that is =20 =20 =20 =20 =20 =20 > configured in the =20 =20 =20 =20 =20 =20 > installation ovirt-setup. =20 =20 =20 =20 =20 =20
> So, how can i fix it to include a user in =20 =20 =20 =20 =20 =20 > this domain? =20 =20 =20 =20 =20 =20
> Att, =20 =20 =20 =20 =20 =20
> -- =20 =20 =20 =20 =20 =20 > =E2=80=9CEncarada do ponto de vista da juventude, =20 =20 =20 =20 =20 =20 > a vida =20 =20 =20 =20 =20 =20 > parece um =20 =20 =20 =20 =20 =20 > futuro =20 =20 =20 =20 =20 =20 > indefinidamente longo, ao passo que, na =20 =20 =20 =20 =20 =20 > velhice, =20 =20 =20 =20 =20 =20 > ela parece =20 =20 =20 =20 =20 =20 > um passado =20 =20 =20 =20 =20 =20 > deveras curto. Assim, a vida no seu in=C3=ADcio se =20 =20 =20 =20 =20 =20 > apresenta do =20 =20 =20 =20 =20 =20 > mesmo modo =20 =20 =20 =20 =20 =20 > que as coisas quando as olhamos atrav=C3=A9s de um =20 =20 =20 =20 =20 =20 > bin=C3=B3culo usado =20 =20 =20 =20 =20 =20 > ao contr=C3=A1rio; mas, ao =20 =20 =20 =20 =20 =20 > seu final, ela se parece com as coisas =20 =20 =20 =20 =20 =20 > tal qual =20 =20 =20 =20 =20 =20 > s=C3=A3o vistas =20 =20 =20 =20 =20 =20 > quando o bin=C3=B3culo =20 =20 =20 =20 =20 =20 > =C3=A9 usado de modo normal. Um homem precisa ter =20 =20 =20 =20 =20 =20 > envelhecido e =20 =20 =20 =20 =20 =20 > vivido =20 =20 =20 =20 =20 =20 > bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20 =20 =20
> (Poema de Arthur Schopenhauer) =20 =20 =20 =20 =20 =20
> ______________________________ _____________________ =20 =20 =20 =20 =20 =20
> Users mailing list =20 =20 =20 =20 =20 =20 > Users@ovirt.org <mailto: Users@ovirt.org > <mailto: > Users@ovirt.org =20 =20 =20 =20 =20 =20 > <mailto: Users@ovirt.org >> <mailto: Users@ovirt.org =20 =20 =20 =20 =20 =20 > <mailto: Users@ovirt.org > =20 =20 =20 =20 =20 =20 > <mailto: Users@ovirt.org <mailto: Users@ovirt.org >>> =20 =20 =20 =20 =20 =20
> http://lists.ovirt.org/____ mailman/listinfo/users =20 =20 =20 =20 =20 =20 > < http://lists.ovirt.org/__ mailman/listinfo/users > =20 =20 =20 =20 =20 =20
> < http://lists.ovirt.org/__ mailman/listinfo/users =20 =20 =20 =20 =20 =20 > < http://lists.ovirt.org/ mailman/listinfo/users >> =20 =20 =20 =20 =20 =20
> -- =20 =20 =20 =20 =20 =20 > =E2=80=9CEncarada do ponto de vista da juventude, a vida =20 =20 =20 =20 =20 =20 > parece um =20 =20 =20 =20 =20 =20 > futuro =20 =20 =20 =20 =20 =20 > indefinidamente longo, ao passo que, na velhice, =20 =20 =20 =20 =20 =20 > ela parece =20 =20 =20 =20 =20 =20 > um passado =20 =20 =20 =20 =20 =20 > deveras curto. Assim, a vida no seu in=C3=ADcio se =20 =20 =20 =20 =20 =20 > apresenta do =20 =20 =20 =20 =20 =20 > mesmo modo =20 =20 =20 =20 =20 =20 > que as coisas quando as olhamos atrav=C3=A9s de um =20 =20 =20 =20 =20 =20 > bin=C3=B3culo usado ao =20 =20 =20 =20 =20 =20 > contr=C3=A1rio; mas, ao =20 =20 =20 =20 =20 =20 > seu final, ela se parece com as coisas tal qual =20 =20 =20 =20 =20 =20 > s=C3=A3o vistas =20 =20 =20 =20 =20 =20 > quando o =20 =20 =20 =20 =20 =20 > bin=C3=B3culo =20 =20 =20 =20 =20 =20 > =C3=A9 usado de modo normal. Um homem precisa ter =20 =20 =20 =20 =20 =20 > envelhecido e =20 =20 =20 =20 =20 =20 > vivido =20 =20 =20 =20 =20 =20 > bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20 =20 =20
> (Poema de Arthur Schopenhauer) =20 =20 =20 =20 =20 =20
> -- =20 =20 =20 =20 =20 =20 > =E2=80=9CEncarada do ponto de vista da juventude, a vida pare= ce =20 =20 =20 =20 =20 =20 > um futuro =20 =20 =20 =20 =20 =20 > indefinidamente longo, ao passo que, na velhice, ela =20 =20 =20 =20 =20 =20 > parece um =20 =20 =20 =20 =20 =20 > passado =20 =20 =20 =20 =20 =20 > deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta =20 =20 =20 =20 =20 =20 > do mesmo =20 =20 =20 =20 =20 =20 > modo =20 =20 =20 =20 =20 =20 > que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3c= ulo =20 =20 =20 =20 =20 =20 > usado ao =20 =20 =20 =20 =20 =20 > contr=C3=A1rio; mas, ao =20 =20 =20 =20 =20 =20 > seu final, ela se parece com as coisas tal qual s=C3=A3o =20 =20 =20 =20 =20 =20 > vistas quando o =20 =20 =20 =20 =20 =20 > bin=C3=B3culo =20 =20 =20 =20 =20 =20 > =C3=A9 usado de modo normal. Um homem precisa ter =20 =20 =20 =20 =20 =20 > envelhecido e vivido =20 =20 =20 =20 =20 =20 > bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20 =20 =20
> (Poema de Arthur Schopenhauer) =20 =20 =20 =20 =20 =20
> -- =20 =20 =20 =20 =20 =20 > =E2=80=9CEncarada do ponto de vista da juventude, a vida pare= ce > um > futuro =20 =20 =20 =20 =20 =20 > indefinidamente longo, ao passo que, na velhice, ela > parece > um =20 =20 =20 =20 =20 =20 > passado =20 =20 =20 =20 =20 =20 > deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta > do > mesmo =20 =20 =20 =20 =20 =20 > modo =20 =20 =20 =20 =20 =20 > que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3c= ulo > usado > ao =20 =20 =20 =20 =20 =20 > contr=C3=A1rio; mas, ao =20 =20 =20 =20 =20 =20 > seu final, ela se parece com as coisas tal qual s=C3=A3o > vistas > quando > o =20 =20 =20 =20 =20 =20 > bin=C3=B3culo =20 =20 =20 =20 =20 =20 > =C3=A9 usado de modo normal. Um homem precisa ter envelhecido > e > vivido =20 =20 =20 =20 =20 =20 > bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20 =20 =20
> (Poema de Arthur Schopenhauer) =20 =20 =20 =20 =20 =20
> -- =20 =20 =20 =20 =20 =20 > =E2=80=9CEncarada do ponto de vista da juventude, a vida pare= ce > um > futuro =20 =20 =20 =20 =20 =20 > indefinidamente longo, ao passo que, na velhice, ela > parece > um > passado =20 =20 =20 =20 =20 =20 > deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta > do > mesmo > modo =20 =20 =20 =20 =20 =20 > que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3c= ulo > usado > ao =20 =20 =20 =20 =20 =20 > contr=C3=A1rio; mas, ao =20 =20 =20 =20 =20 =20 > seu final, ela se parece com as coisas tal qual s=C3=A3o > vistas > quando > o =20 =20 =20 =20 =20 =20 > bin=C3=B3culo =20 =20 =20 =20 =20 =20 > =C3=A9 usado de modo normal. Um homem precisa ter envelhecido > e > vivido =20 =20 =20 =20 =20 =20 > bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20 =20 =20
> (Poema de Arthur Schopenhauer) =20 =20 =20 =20 =20 =20
> ______________________________ _________________ =20 =20 =20 =20 =20 =20 > Users mailing list =20 =20 =20 =20 =20 =20 > Users@ovirt.org =20 =20 =20 =20 =20 =20 > http://lists.ovirt.org/ mailman/listinfo/users =20 =20 =20 =20 =20 =20
there are three issues with installing freeipa on same machine as ovirt: =20 =20 =20 =20 =20 1. the mod_ssl, which is solvable, but requires some work on our side. =20 =20 =20 =20 =20 2. we faced some upgrade issues around this use case, though non are relevant right now iirc. =20 =20 =20 =20 =20 3. freeipa will override the default apache homepage redirection ovirt placed. =20 =20 =20 =20 =20
have you considered running freeipa in a guest? you can still use admin@internal for issues with that guest if needed. =20 =20 =20 =20 =20
-- =20 =20 =20 =20 =E2=80=9CEncarada do ponto de vista da juventude, a vida parece u= m futuro =20 =20 =20 =20 indefinidamente longo, ao passo que, na velhice, ela parece um passado =20 =20 =20 =20 deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo =20 =20 =20 =20 que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo = usado ao contr=C3=A1rio; mas, ao =20 =20 =20 =20 seu final, ela se parece com as coisas tal qual s=C3=A3o vistas quando o bin=C3=B3culo =20 =20 =20 =20 =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivido =20 =20 =20 =20 bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20 =20 =20
(Poema de Arthur Schopenhauer) =20 =20 =20 =20
-- =20 =20 =E2=80=9CEncarada do ponto de vista da juventude, a vida parece um fu= turo =20 =20 indefinidamente longo, ao passo que, na velhice, ela parece um passado =20 =20 deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo =20 =20 que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usad= o ao contr=C3=A1rio; mas, ao =20 =20 seu final, ela se parece com as coisas tal qual s=C3=A3o vistas quand= o o bin=C3=B3culo =20 =20 =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivid= o =20 =20 bastante para perceber como a vida =C3=A9 curta=E2=80=9D. =20 =20
(Poema de Arthur Schopenhauer) =20 =20
-- =E2=80=9CEncarada do ponto de vista da juventude, a vida parece um futuro indefinidamente longo, ao passo que, na velhice, ela parece um passado deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo mod= o que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usado ao contr=C3=A1rio; mas, ao seu final, ela se parece com as coisas tal qual s=C3=A3o vistas quando o bin=C3=B3culo =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivido bastante para perceber como a vida =C3=A9 curta=E2=80=9D.
(Poema de Arthur Schopenhauer)
------=_Part_48839715_2061586021.1355812226098 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable <html><head><style type=3D'text/css'>p { margin: 0; }</style></head><body><= div style=3D'font-family: times new roman,new york,times,serif; font-size: = 12pt; color: #000000'>No, <div>Have you tried to perform authenticatio= n using this user regardless of oVirt?</div><div><br></div><div>My speculat= ion (Pavel, Oved , can you approve?)</div><div><br></div><div>it seems like= your password policy might require to change the password at first login (= I saw such password policy at ActiveDirectory ).</div><div><br></div><div>Y= air<br><hr id=3D"zwchr"><blockquote style=3D"border-left:2px solid rgb(16, = 16, 255);margin-left:5px;padding-left:5px;color:#000;font-weight:normal;fon= t-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;= font-size:12pt;"><b>From: </b>"victor nunes" <victor.rebli@gmail.com>= <br><b>To: </b>"Yair Zaslavsky" <yzaslavs@redhat.com><br><b>Cc: </b>u= sers@ovirt.org<br><b>Sent: </b>Tuesday, December 18, 2012 3:36:15 AM<br><b>= Subject: </b>Re: [Users] tool engine-manage-domains<br><br><div><br></div><= div><div>So returning.</div><div><br></div><div>I got a machine, I installe= d Fedora 17 on it.</div><div>With that I managed to install FreeIPA.</div><= div>FreeIPA configured, and managed to add the domain with the tool</div> <div>"oVirt-manage-domains".</div><div><br></div><div>Created in FreeIPA us= ers, set their passwords.</div><div>I gave permission for them.</div><div>H= owever, I can only login with the admin user in the new domain.</div> <div>With users that I created, is giving the following message:</div><div>= <br></div><div>Can not Login. User Password has expired, Please change your= password.</div><div><br></div><div>So, I need to give any more permission = for users to login?</div> </div><div><br></div><div><br></div>Att,<br><br><div class=3D"gmail_quote">= 2012/12/6 Yair Zaslavsky <span dir=3D"ltr"><<a href=3D"mailto:yzaslavs@r= edhat.com" target=3D"_blank">yzaslavs@redhat.com</a>></span><br><blockqu= ote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc s= olid;padding-left:1ex"> <div><div style=3D"font-size:12pt;font-family:times new roman,new york,time= s,serif"><br><br><hr><blockquote style=3D"padding-left:5px;font-size:12pt;f= ont-style:normal;margin-left:5px;font-family:Helvetica,Arial,sans-serif;tex= t-decoration:none;font-weight:normal;border-left:2px solid rgb(16,16,255)"> <b>From: </b>"victor nunes" <<a href=3D"mailto:victor.rebli@gmail.com" t= arget=3D"_blank">victor.rebli@gmail.com</a>><br><b>To: </b>"Yair Zaslavs= ky" <<a href=3D"mailto:yzaslavs@redhat.com" target=3D"_blank">yzaslavs@r= edhat.com</a>><br> <b>Cc: </b><a href=3D"mailto:users@ovirt.org" target=3D"_blank">users@ovirt= .org</a>, "Itamar Heim" <<a href=3D"mailto:iheim@redhat.com" target=3D"_= blank">iheim@redhat.com</a>><br><b>Sent: </b>Thursday, December 6, 2012 = 2:14:49 AM<div> <br><b>Subject: </b>Re: [Users] tool engine-manage-domains<br><br></div><di= v><div>Hello,</div><div><br></div><div>I'm going to do all these tests, but= a question.</div><div><br></div><div>I need to configure Kerberos on the s= erver LDAP?</div> <div><br></div><div>Att,</div></div></blockquote>Yes.<div><div><br><br><blo= ckquote style=3D"padding-left:5px;font-size:12pt;font-style:normal;margin-l= eft:5px;font-family:Helvetica,Arial,sans-serif;text-decoration:none;font-we= ight:normal;border-left:2px solid rgb(16,16,255)"> <div></div><br><div class=3D"gmail_quote"> 2012/12/4 Yair Zaslavsky <span dir=3D"ltr"><<a href=3D"mailto:yzaslavs@r= edhat.com" target=3D"_blank">yzaslavs@redhat.com</a>></span><br><blockqu= ote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc s= olid;padding-left:1ex"> <div><div style=3D"font-size:12pt;font-family:times new roman,new york,time= s,serif"><font face=3D"times new roman, new york, times, serif">Hi,</font><= div style=3D"font-family:'times new roman','new york',times,serif"> Several things -</div><div style=3D"font-family:'times new roman','new york= ',times,serif">a. I think logging at this point should be improved</div><di= v style=3D"font-family:'times new roman','new york',times,serif"> b. Since the log is not informative enough, please try the following:</div>= <div style=3D"font-family:'times new roman','new york',times,serif">1. Chec= k that your credentials are correct</div><div style=3D"font-family:'t= imes new roman','new york',times,serif"> 2. Check you have no clock skew issue (the time difference between the mach= ine running manage-domains and your ldap server should be less or equal to = 5 minutes).</div><div style=3D"font-family:'times new roman','new york',tim= es,serif"> 3. Connection refused so there is some connectivity issue - </div><div=
<font face=3D"times new roman, new york, times, serif">please query your l= dap SRV records for the domain (IMHO dig SRV _ldap._tcp.</font><font face= =3D"Helvetica, Arial, sans-serif"><a href=3D"http://viperde.com.br" target= =3D"_blank">viperde.com.br</a> should do the trick) </font></div>
<div><font face=3D"Helvetica, Arial, sans-serif">please try to connect to t= hese ldap servers manually -</font></div><div><br></div><div><font face=3D"= Helvetica, Arial, sans-serif">For example, if the returned host from the di= g SRV query is</font></div> <div><font face=3D"Helvetica, Arial, sans-serif"><a href=3D"http://aaa.vipe= rde.com.br" target=3D"_blank">aaa.viperde.com.br</a></font></div><div><font= face=3D"Helvetica, Arial, sans-serif"><br></font></div><div><font face=3D"= Helvetica, Arial, sans-serif">perform:</font></div> <div><font face=3D"Helvetica, Arial, sans-serif">telnet <a href=3D"http://a= aa.viperde.com.br" target=3D"_blank">aaa.viperde.com.br</a> 389</font></div=
<div><font face=3D"Helvetica, Arial, sans-serif"><br></font></div><div><fo= nt face=3D"Helvetica, Arial, sans-serif">Turns out that I did not have teln= et installed on my fc17 machine -</font></div>
<div><font face=3D"Helvetica, Arial, sans-serif">I used yum install telnet = to install it.</font></div><div><font face=3D"Helvetica, Arial, sans-serif"=
<br></font></div><div><font face=3D"Helvetica, Arial, sans-serif">Kind reg= ards,</font></div>
<div><font face=3D"Helvetica, Arial, sans-serif"><br></font></div><div><fon= t face=3D"Helvetica, Arial, sans-serif">Yair</font></div><div><font face=3D= "Helvetica, Arial, sans-serif"><br></font></div><div style=3D"font-family:'= times new roman','new york',times,serif"> <br><hr><blockquote style=3D"padding-left:5px;font-size:12pt;font-style:nor= mal;margin-left:5px;font-family:Helvetica,Arial,sans-serif;text-decoration:= none;font-weight:normal;border-left:2px solid rgb(16,16,255)"><b>From: </b>= "victor nunes" <<a href=3D"mailto:victor.rebli@gmail.com" target=3D"_bla= nk">victor.rebli@gmail.com</a>><br> <b>To: </b>"Itamar Heim" <<a href=3D"mailto:iheim@redhat.com" target=3D"= _blank">iheim@redhat.com</a>><br><b>Cc: </b>"Yair Zaslavsky" <<a href= =3D"mailto:yzaslavs@redhat.com" target=3D"_blank">yzaslavs@redhat.com</a>&g= t;, <a href=3D"mailto:users@ovirt.org" target=3D"_blank">users@ovirt.org</a=
<br>
<b>Sent: </b>Tuesday, December 4, 2012 3:28:56 AM<br><b>Subject: </b>Re: [U= sers] tool engine-manage-domains<div><div><br><br><div>Thanks for the reply= .</div><div><br></div><div>I do not have another machine to the power confi= guar FreeIPA.</div> <div><br></div><div>I have a machine, I do not have access, which is an LDA= P server installed on it.</div> <div>I configured a machine that is oVirt-manage as ldap client, I configur= ed the dns, but in time to include the domain happens the following error:<= /div><div><br></div><div>Error: exception message: Connection refused</div> <div>Failure while testing domain <a href=3D"http://viprede.com.br" target= =3D"_blank">viprede.com.br</a>. Details: Kerberos error. Please check log f= or further Top details.</div><div><br></div><div>in the logs, I have the fo= llowing lines:</div> <div><br></div><div>03/12/2012 20:25:26,390 INFO [org.ovirt.engine.core.uti= ls.kerberos.ManageDomains] Creating kerberos configuration for domain (s): = <a href=3D"http://viprede.com.br" target=3D"_blank">viprede.com.br</a></div=
<div>03/12/2012 20:25:26,422 INFO [org.ovirt.engine.core.utils.kerberos.Man= ageDomains] Successfully created kerberos configuration for domain (s): <a = href=3D"http://viprede.com.br" target=3D"_blank">viprede.com.br</a></div> <div>03/12/2012 20:25:26,422 INFO [org.ovirt.engine.core.utils.kerberos.Man= ageDomains] Testing kerberos configuration for domain: <a href=3D"http://vi= prede.com.br" target=3D"_blank">viprede.com.br</a>.</div><div><br></div><di= v> So what could be this error?</div> <br><div class=3D"gmail_quote">2012/11/29 Itamar Heim <span dir=3D"ltr"><= ;<a href=3D"mailto:iheim@redhat.com" target=3D"_blank">iheim@redhat.com</a>= ></span><br><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex= ;border-left:1px #ccc solid;padding-left:1ex"> On 11/29/2012 05:58 AM, victor nunes wrote:<br> <blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p= x #ccc solid;padding-left:1ex"> <br> <br> 2012/11/29 Yair Zaslavsky <<a href=3D"mailto:yzaslavs@redhat.com" target= =3D"_blank">yzaslavs@redhat.com</a> <mailto:<a href=3D"mailto:yzaslavs@r= edhat.com" target=3D"_blank">yzaslavs@redhat.com</a>>><div><br> <br> Hi,<br> Can you redirect your question to <a href=3D"mailto:users@ovi= rt.org" target=3D"_blank">users@ovirt.org</a><br></div> <mailto:<a href=3D"mailto:users@ovirt.org" target=3D"_blan= k">users@ovirt.org</a>>?<div><br> I think others will help you to forward your question to rele= vant<br> people here (not sure I can provide a good answer).<br> <br> <br> <br> On 11/29/2012 03:26 AM, victor nunes wrote:<br> <br> So I'm trying to install FreeIPA on the same ma= chine that<br> oVirt-manage,<br> but at the time of installation, the following = error occurs:<br> <br> FreeIPA-server conflicts with 1: mod_ssl-2.2.22= -4.fc17.x86_64<br> <br> <br> Looking for a solution to the problem, I discov= ered that this is<br> a bug<br> reported by others.<br> <br> Follow the link to the bug reported:<br></div> <a href=3D"https://bugzilla.redhat.com/__show_b= ug.cgi?id=3D840098" target=3D"_blank">https://bugzilla.redhat.com/__<u></u>= show_bug.cgi?id=3D840098</a><div><br> <<a href=3D"https://bugzilla.redhat.com/show= _bug.cgi?id=3D840098" target=3D"_blank">https://bugzilla.redhat.com/<u></u>= show_bug.cgi?id=3D840098</a>><br> <br> Then, using oo FreeIPA not be possible, which o= therwise I have<br> to add<br> new domains and users?<br> <br> Em 8 de novembro de 2012 02:41, Yair Zaslavsky<= br> <<a href=3D"mailto:yzaslavs@redhat.com" targ= et=3D"_blank">yzaslavs@redhat.com</a> <mailto:<a href=3D"mailto:yzaslavs= @redhat.com" target=3D"_blank">yzaslavs@redhat.com</a>><br></div> <mailto:<a href=3D"mailto:yzaslavs@redhat.co= m" target=3D"_blank">yzaslavs@redhat.com</a> <mailto:<a href=3D"mailto:y= zaslavs@redhat.com" target=3D"_blank">yzaslavs@redhat.com</a>>>> e= screveu:<div> <br> <br> <br> Hi,<br> You cannot create new users= for the internal domain.<br> The internal domain was dev= eloped for quick POC, just to<br> allow login<br> to the system without the n= eed for ldap provider.<br> I recommend you install som= e ldap server (i.e - free IPA)<br> and try to<br> work with it.<br> <br> <br> <br> On 11/08/2012 01:08 AM, vic= tor nunes wrote:<br> <br> Sorry.<br> <br> Att,<br> <br> 2012/11/7 vic= tor nunes <<a href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">v= ictor.rebli@gmail.com</a><br> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>><br> <mailto:<a= href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmai= l.com</a><br> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>>__><br> <mailto:<a= href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmai= l.com</a><br> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>> <mailto:<a= href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmai= l.com</a><br></div> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>>__>__>&g= t;<div><br> <br> <br> <br> = ; Thanks for the reply.<br> <br> = ; As the command "engine-manage-domains" works with<br> ldap, how<br> can I<br> = ; create another user in the field "internal", and user<br> "admin" that<= br> = ; is created when you installed the engine-setup?<br> <br> = ; 2012/11/4 Yair Zaslavsky <<a href=3D"mailto:yzaslavs@redhat.com" targe= t=3D"_blank">yzaslavs@redhat.com</a><br> <mailto:<a href=3D"mailto:yzaslavs@redhat.co= m" target=3D"_blank">yzaslavs@redhat.com</a>><br> <mailto:<a= href=3D"mailto:yzaslavs@redhat.com" target=3D"_blank">yzaslavs@redhat.com<= /a> <mailto:<a href=3D"mailto:yzaslavs@redhat.com" target=3D"_blank">yza= slavs@redhat.com</a>>><br> = ; <mailto:<a href=3D"mailto:yzaslavs@redhat.com" target=3D"_blank">yzasl= avs@redhat.com</a><br> <mailto:<a href=3D"mailto:yzaslavs@redhat.co= m" target=3D"_blank">yzaslavs@redhat.com</a>> <mailto:<a href=3D"mail= to:yzaslavs@redhat.com" target=3D"_blank">yzaslavs@redhat.com</a><br> <mailto:<a href=3D"mailto:yzaslavs@redhat.co= m" target=3D"_blank">yzaslavs@redhat.com</a>>>><u></u>><br> <br> <br> <br> = ; Hi,<br> = ; The specified tool handle only ldap domains,<br> and not the<br> = ; internal domain.<br> = ; What would you like to change at the internal<br> domain?<br> = ; I suggest you try to use engine-config for this.<br> <br> <br> <br> <br></div> ------------------------------<u></u>____------= --------------------<u></u>--__--__------------<div><br> <br> <br> = ; *From: *"victor nunes"<br> <<a href=3D"mailto:victor.rebli@gmail.com" t= arget=3D"_blank">victor.rebli@gmail.com</a> <mailto:<a href=3D"mailto:vi= ctor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>&g= t;<br> <mailto:<a= href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmai= l.com</a><br> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>>__><br></di= v><div> = ; <mailto:<a href=3D"mailto:victor.rebli@gma= il.com" target=3D"_blank">victor.rebli@gmail.com</a><br> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>><br> <mailto:<a= href=3D"mailto:victor.rebli@gmail.com" target=3D"_blank">victor.rebli@gmai= l.com</a><br></div> <mailto:<a href=3D"mailto:victor.rebli@gmail= .com" target=3D"_blank">victor.rebli@gmail.com</a><u></u>>__>__>&g= t;<div><div><br> = ; *To: *<a href=3D"mailto:users@ovirt.org" targ= et=3D"_blank">users@ovirt.org</a><br> <mailto:<a href=3D"mailto:users@ovirt.org" t= arget=3D"_blank">users@ovirt.org</a>> <mailto:<a href=3D"mailto:users= @ovirt.org" target=3D"_blank">users@ovirt.org</a><br> <mailto:<a href=3D"mailto:users@ovirt.org" t= arget=3D"_blank">users@ovirt.org</a>>><br> <mailto:<a= href=3D"mailto:users@ovirt.org" target=3D"_blank">users@ovirt.org</a> <= mailto:<a href=3D"mailto:users@ovirt.org" target=3D"_blank">users@ovirt.org= </a>><br> <mailto:<a href=3D"mailto:users@ovirt.org" t= arget=3D"_blank">users@ovirt.org</a> <mailto:<a href=3D"mailto:users@ovi= rt.org" target=3D"_blank">users@ovirt.org</a>>>><br> <br> = ; *Sent: *Sunday, November 4, 2012 12:18:55 AM<= br> = ; *Subject: *[Users] tool engine-manage-domains= <br> <br> <br> <br> = ; I'm trying to change the default domain, the<= br> "internal" wi= th<br> = ; the following command:<br> <br> = ; engine-manage-domains -action=3Dedit<br> -domain=3Dinternal<br> <br> = ; However, i am getting the following message:<= br> <br> = ; "Domain internal doesn't exist int the<br> configuration"<br> <br> = ; This is my domain admin user that is<br> configured in the<br> = ; installation ovirt-setup.<br> <br> = ; So, how can i fix it to include a user in<br> this domain?<br> <br> <br> = ; Att,<br> <br> <br> <br> <br> = ; --<br> = ; =E2=80=9CEncarada do ponto de vista da juvent= ude,<br> a vida<br> parece um<br> = ; futuro<br> = ; indefinidamente longo, ao passo que, na<br> velhice,<br> ela parece<br=
= ; um passado<br> = ; deveras curto. Assim, a vida no seu in=C3=ADc= io se<br> apresenta do<= br> = ; mesmo modo<br> = ; que as coisas quando as olhamos atrav=C3=A9s = de um<br> bin=C3=B3culo= usado<br> = ; ao contr=C3=A1rio; mas, ao<br> = ; seu final, ela se parece com as coisas<br> tal qual<br> s=C3=A3o vist= as<br> = ; quando o bin=C3=B3culo<br> = ; =C3=A9 usado de modo normal. Um homem precisa= ter<br> envelhecido e= <br> = ; vivido<br> = ; bastante para perceber como a vida =C3=A9 cur= ta=E2=80=9D.<br> <br> = ; (Poema de = Arthur Schopenhauer)<br> <br> <br></div></div> ______________________________<u></u>___= __________________<div><br> = ; Users mailing list<br> <a href=3D"mailto:Users@ovirt.org" target=3D"_b= lank">Users@ovirt.org</a> <mailto:<a href=3D"mailto:Users@ovirt.org" tar= get=3D"_blank">Users@ovirt.org</a>> <mailto:<a href=3D"mailto:Users@o= virt.org" target=3D"_blank">Users@ovirt.org</a><br> </div> <mailto:<a href=3D"mailto:Users@ovirt.org" t= arget=3D"_blank">Users@ovirt.org</a>>> <mailto:<a href=3D"mailto:U= sers@ovirt.org" target=3D"_blank">Users@ovirt.org</a><br> <mailto:<a href=3D"mailto:Users@ovirt.org" t= arget=3D"_blank">Users@ovirt.org</a>><br> <mailto:<a= href=3D"mailto:Users@ovirt.org" target=3D"_blank">Users@ovirt.org</a> <= mailto:<a href=3D"mailto:Users@ovirt.org" target=3D"_blank">Users@ovirt.org= </a>>>><br> <br> <a href=3D"http://lists.ovirt.org/____mailman/l= istinfo/users" target=3D"_blank">http://lists.ovirt.org/____<u></u>mailman/= listinfo/users</a><br> <<a href=3D"http://lists.ovirt.org/__mailman= /listinfo/users" target=3D"_blank">http://lists.ovirt.org/__<u></u>mailman/= listinfo/users</a>><div><div><br> <br> <<a href= =3D"http://lists.ovirt.org/__mailman/listinfo/users" target=3D"_blank">http= ://lists.ovirt.org/__<u></u>mailman/listinfo/users</a><br> <<a href=3D"http://lists.ovirt.org/mailman/l= istinfo/users" target=3D"_blank">http://lists.ovirt.org/<u></u>mailman/list= info/users</a>>><br> <br> <br> <br> <br> <br> = ; --<br> = ; =E2=80=9CEncarada do ponto de vista da juventude, a vida<br> parece um<br> futuro<br> = ; indefinidamente longo, ao passo que, na velhice,<br> ela parece<br> um passado<br=
= ; deveras curto. Assim, a vida no seu in=C3=ADcio se<br> apresenta do<br> mesmo modo<br=
= ; que as coisas quando as olhamos atrav=C3=A9s de um<br> bin=C3=B3culo usado ao<br> = ; contr=C3=A1rio; mas, ao<br> = ; seu final, ela se parece com as coisas tal qual<br> s=C3=A3o vistas<br> quando o<br> = ; bin=C3=B3culo<br> = ; =C3=A9 usado de modo normal. Um homem precisa ter<br> envelhecido e<br> vivido<br> = ; bastante para perceber como a vida =C3=A9 curta=E2=80=9D.<br> <br> = ; (Poema de Arthur Schopenhauer)<br> <br> <br> <br> <br> --<br> =E2=80=9CEnca= rada do ponto de vista da juventude, a vida parece<br> um futuro<br> indefinidamen= te longo, ao passo que, na velhice, ela<br> parece um<br> passado<br> deveras curto= . Assim, a vida no seu in=C3=ADcio se apresenta<br> do mesmo<br> modo<br> que as coisas= quando as olhamos atrav=C3=A9s de um bin=C3=B3culo<br> usado ao<br> contr=C3=A1ri= o; mas, ao<br> seu final, el= a se parece com as coisas tal qual s=C3=A3o<br> vistas quando o<br> bin=C3=B3culo= <br> =C3=A9 usado = de modo normal. Um homem precisa ter<br> envelhecido e vivido<br> bastante para= perceber como a vida =C3=A9 curta=E2=80=9D.<br> <br> = ; (Poema de Arthur Schopenhauer)<br> <br> <br> <br> <br> --<br> =E2=80=9CEncarada do ponto de vista da juventud= e, a vida parece um futuro<br> indefinidamente longo, ao passo que, na velhice= , ela parece um<br> passado<br> deveras curto. Assim, a vida no seu in=C3=ADcio= se apresenta do mesmo<br> modo<br> que as coisas quando as olhamos atrav=C3=A9s de= um bin=C3=B3culo usado ao<br> contr=C3=A1rio; mas, ao<br> seu final, ela se parece com as coisas ta= l qual s=C3=A3o vistas quando o<br> bin=C3=B3culo<br> =C3=A9 usado de modo normal. Um homem precisa t= er envelhecido e vivido<br> bastante para perceber como a vida =C3=A9 curta= =E2=80=9D.<br> <br> (Poema= de Arthur Schopenhauer)<br> <br> <br> <br> <br> --<br> =E2=80=9CEncarada do ponto de vista da juventude, a vida parece um futuro<b= r> indefinidamente longo, ao passo que, na velhice, ela parece um passado<br> deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo<= br> que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usado ao<b= r> contr=C3=A1rio; mas, ao<br> seu final, ela se parece com as coisas tal qual s=C3=A3o vistas quand= o o<br> bin=C3=B3culo<br> =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivido<br> bastante para perceber como a vida =C3=A9 curta=E2=80=9D.<br> <br> (Poema de Arthur Schopenhauer)<br> <br> <br></div></div><div> ______________________________<u></u>_________________<br> Users mailing list<br> <a href=3D"mailto:Users@ovirt.org" target=3D"_blank">Users@ovirt.org</a><br=
</div><a href=3D"http://lists.ovirt.org/mailman/listinfo/users" target=3D"_= blank">http://lists.ovirt.org/<u></u>mailman/listinfo/users</a><br> <br> </blockquote> <br> there are three issues with installing freeipa on same machine as ovirt:<br=
1. the mod_ssl, which is solvable, but requires some work on our side.<br> 2. we faced some upgrade issues around this use case, though non are releva= nt right now iirc.<br> 3. freeipa will override the default apache homepage redirection ovirt plac= ed.<br> <br> have you considered running freeipa in a guest? you can still use admin@int= ernal for issues with that guest if needed.<br> </blockquote></div><br><br clear=3D"all"><div><br></div>-- <br>=E2=80=9CEnc= arada do ponto de vista da juventude, a vida parece um futuro<br>indefinida= mente longo, ao passo que, na velhice, ela parece um passado <br>deveras cu= rto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo<br> que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usado ao c= ontr=C3=A1rio; mas, ao <br>seu final, ela se parece com as coisas tal= qual s=C3=A3o vistas quando o bin=C3=B3culo<br>=C3=A9 usado de modo normal= . Um homem precisa ter envelhecido e vivido<br> bastante para perceber como a vida =C3=A9 curta=E2=80=9D. <br>= <br> (Poema de Arthur Schopenhauer)<br> </div></div></blockquote><br></div></div></div></blockquote></div><br><br c= lear=3D"all"><div><br></div>-- <br>=E2=80=9CEncarada do ponto de vista da j= uventude, a vida parece um futuro<br>indefinidamente longo, ao passo que, n= a velhice, ela parece um passado <br> deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo<= br>que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usado a= o contr=C3=A1rio; mas, ao <br>seu final, ela se parece com as coisas = tal qual s=C3=A3o vistas quando o bin=C3=B3culo<br> =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivido<br>b= astante para perceber como a vida =C3=A9 curta=E2=80=9D. <br><= br> (Poema de Arthur Schopenhauer)<br> </blockquote><br></div></div></div></div></blockquote></div><br><br clear= =3D"all"><div><br></div>-- <br>=E2=80=9CEncarada do ponto de vista da juven= tude, a vida parece um futuro<br>indefinidamente longo, ao passo que, na ve= lhice, ela parece um passado <br> deveras curto. Assim, a vida no seu in=C3=ADcio se apresenta do mesmo modo<= br>que as coisas quando as olhamos atrav=C3=A9s de um bin=C3=B3culo usado a= o contr=C3=A1rio; mas, ao <br>seu final, ela se parece com as coisas = tal qual s=C3=A3o vistas quando o bin=C3=B3culo<br> =C3=A9 usado de modo normal. Um homem precisa ter envelhecido e vivido<br>b= astante para perceber como a vida =C3=A9 curta=E2=80=9D. <br><= br> (Poema de Arthur Schopenhauer)<br> </blockquote><br></div></div></body></html> ------=_Part_48839715_2061586021.1355812226098--