[ovirt-users] FreeIPA

Ondra Machacek omachace at redhat.com
Wed Sep 23 06:40:12 UTC 2015


Just for clarification - ovirt-engine-extension-aaa-ldap-setup is 
available from oVirt 3.6

Can you send engine.log, hard to say what's wrong from configuration, it 
looks good.

On 09/22/2015 09:55 PM, Ravi Nori wrote:
> Once you have installed ovirt-engine-extension-aaa-ldap and 
> ovirt-engine-extension-aaa-ldap-setup
>
> You can run ovirt-engine-extension-aaa-ldap-setup and follow the steps 
> to set up ldap.
>
> Once that is done you can login to webadmin and add users/groups from ipa
>
> On 09/22/2015 11:57 AM, suporte at logicworks.pt wrote:
>> Here is what I'm trying to do:
>>
>> Ovirt engine : engine.domain.tld
>> Freeipa 4.1.0 : ipa.domain.tld
>>
>> I have installed on the engine:
>> /ovirt-engine-extension-aaa-ldap/
>> /openldap-clients/
>>
>> /etc/ovirt-engine/aaa/profile1.properties:
>> #
>> # Select one
>> #
>> #include = <openldap.properties>
>> #include = <389ds.properties>
>> #include = <rhds.properties>
>> include = <ipa.properties>
>> #include = <iplanet.properties>
>> #include = <rfc2307.properties>
>> #include = <rfc2307-openldap.properties>
>>
>> #
>> # Server
>> #
>> vars.server = ipa.domain.tld
>>
>> #
>> # Search user and its password.
>> #
>> vars.user = uid=search,cn=users,cn=accounts,dc=domain,dc=tld
>> vars.password =/ipa_admin_password/
>>
>> pool.default.serverset.single.server = ${global:vars.server}
>> pool.default.auth.simple.bindDN = ${global:vars.user}
>> pool.default.auth.simple.password = ${global:vars.password}
>>
>> # Create keystore, import certificate chain and uncomment
>> # if using ssl/tls.
>> #pool.default.ssl.startTLS = true
>> #pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
>> #pool.default.ssl.truststore.password = changeit
>>
>>
>> On the engine cannot find any users configured on the ipa server.
>>
>> Any help?
>>
>> Thanks
>>
>> Jose
>>
>>
>> ------------------------------------------------------------------------
>> *De: *"Alon Bar-Lev" <alonbl at redhat.com>
>> *Para: *suporte at logicworks.pt
>> *Cc: *"users" <users at ovirt.org>
>> *Enviadas: *Sexta-feira, 18 De Setembro de 2015 15:48:22
>> *Assunto: *Re: [ovirt-users] FreeIPA
>>
>>
>>
>> ----- Original Message -----
>> > From: suporte at logicworks.pt
>> > To: "users" <users at ovirt.org>
>> > Sent: Friday, September 18, 2015 5:45:18 PM
>> > Subject: [ovirt-users] FreeIPA
>> >
>> > Hi,
>> >
>> > Is there any documentation about FreeIPA integration with oVirt 3.5 
>> and how
>> > to configure it?
>> >
>>
>> Hi,
>>
>> Please find documentation at [1][2].
>>
>> Regards,
>> Alon Bar-Lev.
>>
>> [1] http://www.ovirt.org/Features/AAA
>> [2] 
>> https://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=ovirt-engine-extension-aaa-ldap-1.0
>>
>>
>>
>> _______________________________________________
>> Users mailing list
>> Users at ovirt.org
>> http://lists.ovirt.org/mailman/listinfo/users
>
>
>
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ovirt.org/pipermail/users/attachments/20150923/7580385a/attachment-0001.html>


More information about the Users mailing list