Re: [Users] oVirt and IPA (LDAP/KERBEROS)
ok Thanks for your answer. I don't have a SRV record in my DNS so I have just installed dnsmasq on my ovirt-engine server and add : in /etc/dnsmasq.conf svr-host = _ldap._tcp.example.com,ldapserver.example.com,389 srv-host=_kerberos._tcp.example.com,krb5.example.com,88 in /etc/resolv.conf nameserver MY_OVIRT-ENGINE_IP_ADDRESS on the top of namserver and everything works. Thanks again. 2013/6/14 Ian Forde <ianforde@gmail.com>
Since you've got IPA server setup, I assume that you've already got your SRV records setup in DNS. So, according to 'engine-manage-domains -h', you don't have to specify the "ldapServers" argument. Instead, do:
engine-manage-domains -action=add -domain=example.com -user=admin -provider=IPA -passwordFile=/tmp/.pwd
where /tmp/.pwd holds the password for the duration of this operation. (In other words, put the password in there first, then delete the file when you're done.)
That's what worked for me, anyway...
-I
On Thu, Jun 13, 2013 at 1:42 PM, James James <jreg2k@gmail.com> wrote:
Hello,
I want to connect my oVirt server on my IPA server. After executing : engine-manage-domains -action=add -domain=example.com -user=admin -provider=IPA -ldapServers=ldap.example.com -interactive -report
I've got this answer :
Invalid argument ldapservers
Can somebody help me ?
Regards
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
------=_Part_19817500_2021734235.1371313911889 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit I still don't like the fact -ldapServers gave invalid argument error. Can you please elaborate on oVirt version you're using? Many thanks, Yair ----- Original Message -----
From: "James James" <jreg2k@gmail.com> To: "Ian Forde" <ianforde@gmail.com>, users@ovirt.org Sent: Friday, June 14, 2013 7:09:54 AM Subject: Re: [Users] oVirt and IPA (LDAP/KERBEROS)
ok Thanks for your answer.
I don't have a SRV record in my DNS so I have just installed dnsmasq on my ovirt-engine server and add :
in /etc/dnsmasq.conf svr-host = _ldap._ tcp.example.com , ldapserver.example.com ,389 srv-host=_kerberos._ tcp.example.com , krb5.example.com ,88
in /etc/resolv.conf
nameserver MY_OVIRT-ENGINE_IP_ADDRESS
on the top of namserver
and everything works.
Thanks again.
2013/6/14 Ian Forde < ianforde@gmail.com >
Since you've got IPA server setup, I assume that you've already got your SRV records setup in DNS. So, according to 'engine-manage-domains -h', you don't have to specify the "ldapServers" argument. Instead, do:
engine-manage-domains -action=add -domain= example.com -user=admin -provider=IPA -passwordFile=/tmp/.pwd
where /tmp/.pwd holds the password for the duration of this operation. (In other words, put the password in there first, then delete the file when you're done.)
That's what worked for me, anyway...
-I
On Thu, Jun 13, 2013 at 1:42 PM, James James < jreg2k@gmail.com > wrote:
Hello,
I want to connect my oVirt server on my IPA server. After executing :
engine-manage-domains -action=add -domain= example.com -user=admin -provider=IPA -ldapServers= ldap.example.com -interactive -report
I've got this answer :
Invalid argument ldapservers
Can somebody help me ?
Regards
_______________________________________________
Users mailing list
Users@ovirt.org
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
<br></div><br></div>Thanks again.</div> <div class=3D"gmail_extra"><br><div><br></div><div class=3D"gmail_quote">20= 13/6/14 Ian Forde <span dir=3D"ltr"><<a href=3D"mailto:ianforde@gmail.co= m" target=3D"_blank">ianforde@gmail.com</a>></span><br><blockquote class= =3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padd= ing-left:1ex"> <div dir=3D"ltr">Since you've got IPA server setup, I assume that you've al= ready got your SRV records setup in DNS. So, according to 'engine-man= age-domains -h', you don't have to specify the "ldapServers" argument. &nbs=
------=_Part_19817500_2021734235.1371313911889 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable <html><body><div style=3D"font-family: times new roman, new york, times, se= rif; font-size: 12pt; color: #000000"><div>I still don't like the fact -lda= pServers gave invalid argument error.</div><div>Can you please elaborate on= oVirt version you're using?</div><div><br></div><div>Many thanks,</div><di= v>Yair</div><div><br></div><div><br></div><hr id=3D"zwchr"><blockquote styl= e=3D"border-left:2px solid #1010FF;margin-left:5px;padding-left:5px;color:#= 000;font-weight:normal;font-style:normal;text-decoration:none;font-family:H= elvetica,Arial,sans-serif;font-size:12pt;"><b>From: </b>"James James" <j= reg2k@gmail.com><br><b>To: </b>"Ian Forde" <ianforde@gmail.com>, u= sers@ovirt.org<br><b>Sent: </b>Friday, June 14, 2013 7:09:54 AM<br><b>Subje= ct: </b>Re: [Users] oVirt and IPA (LDAP/KERBEROS)<br><div><br></div><div di= r=3D"ltr"><div><div>ok Thanks for your answer.<br><div><br></div></div>I do= n't have a SRV record in my DNS so I have just installed dnsmasq on my ovir= t-engine server and add :<br><div><br></div></div><div>in /etc/dnsmasq.conf= <br></div> <div>svr-host =3D _ldap._<a href=3D"http://tcp.example.com" target=3D"_blan= k">tcp.example.com</a>,<a href=3D"http://ldapserver.example.com" target=3D"= _blank">ldapserver.example.com</a>,389<br></div><div>srv-host=3D_kerberos._= <a href=3D"http://tcp.example.com" target=3D"_blank">tcp.example.com</a>,<a= href=3D"http://krb5.example.com" target=3D"_blank">krb5.example.com</a>,88= <br> </div><div><br></div><div>in /etc/resolv.conf<br><div><br></div></div><div>= nameserver MY_OVIRT-ENGINE_IP_ADDRESS<br></div><div><br></div><div>on the t= op of namserver <br><div><br></div></div><div>and everything works.<br><div= p;Instead, do:<div> <br></div><div>engine-manage-domains -action=3Dadd -domain=3D<a href=3D"htt= p://example.com" target=3D"_blank">example.com</a> -user=3Dadmin -provider= =3DIPA -passwordFile=3D/tmp/.pwd</div><div><br></div><div>where /tmp/.pwd h= olds the password for the duration of this operation. (In other words= , put the password in there first, then delete the file when you're done.)<= /div> <div><br></div><div>That's what worked for me, anyway...</div><div><br></di= v><div> -I</div></div><div class=3D"gmail_extra"><br><div><br></div><= div class=3D"gmail_quote"><div><div class=3D"h5">On Thu, Jun 13, 2013 at 1:= 42 PM, James James <span dir=3D"ltr"><<a href=3D"mailto:jreg2k@gmail.com= " target=3D"_blank">jreg2k@gmail.com</a>></span> wrote:<br> </div></div><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;bo= rder-left:1px #ccc solid;padding-left:1ex"><div><div class=3D"h5"><div dir= =3D"ltr"><div>Hello,<br><div><br></div>I want to connect my oVirt server on= my IPA server. After executing : <br> engine-manage-domains -action=3Dadd -domain=3D<a href=3D"http://example.com= " target=3D"_blank">example.com</a> -user=3Dadmin -provider=3DIPA -ldapServ= ers=3D<a href=3D"http://ldap.example.com" target=3D"_blank">ldap.example.co= m</a> -interactive -report<br> <br></div>I've got this answer :<br><div><br>Invalid argument ldapservers<b= r><div><br></div><br></div><div>Can somebody help me ?<br><div><br></div></= div><div>Regards<br></div></div> <br></div></div>_______________________________________________<br> Users mailing list<br> <a href=3D"mailto:Users@ovirt.org" target=3D"_blank">Users@ovirt.org</a><br=
<a href=3D"http://lists.ovirt.org/mailman/listinfo/users" target=3D"_blank"=
http://lists.ovirt.org/mailman/listinfo/users</a><br> <br></blockquote></div><br></div> </blockquote></div><br></div> <br>_______________________________________________<br>Users mailing list<b= r>Users@ovirt.org<br>http://lists.ovirt.org/mailman/listinfo/users<br></blo= ckquote><div><br></div></div></body></html> ------=_Part_19817500_2021734235.1371313911889--
participants (2)
-
James James -
Yair Zaslavsky