doing some googling, this seems to be about the most current/relevant thing I have found wrt to running freeipa server on CentOS http://howtoforge.com/how-to-build-rhel-ipa-rpms-for-centos-5 which I'm not totally adverse to doing but I have to ask, is there something packaged? (I've looked in 'testing' and in 'extras' and in epel) Has anyone followed some other instructions? Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
On Tue, 2009-04-07 at 08:24 -0700, Craig White wrote:> doing some googling, this seems to be about the most current/relevant > thing I have found wrt to running freeipa server on CentOS > > http://howtoforge.com/how-to-build-rhel-ipa-rpms-for-centos-5 > > which I'm not totally adverse to doing but I have to ask, is there > something packaged? (I've looked in 'testing' and in 'extras' and in > epel) > > Has anyone followed some other instructions?---- hmmm...no one using freeipa I think. I was able to get it to compile using the above but that was version 1.0.0 and they're up to 1.2.1 on their web site. Fedora 10 has 1.2.0 src rpm but it has a requirement of popt-devel which I couldn't find for CentOS-5. I could build the Fedora 10 version of the popt/popt-devel rpms but I couldn't install popt-devel without popt and that caused all sorts of issues with rpm/rpm-devel/rpm-build, to the point where I chickened out. When I commented out the requirement for popt-devel in the spec file, of course it wouldn't build anyway (ldapi-plugin-winsync didn't seem to me to be related to popt-devel but who knows). ;-( It would seem that if Red Hat were serious about freeipa, they would make it so that it actually could build a non-ancient version on RHEL (CentOS). Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Craig White wrote:> doing some googling, this seems to be about the most current/relevant > thing I have found wrt to running freeipa server on CentOS > > http://howtoforge.com/how-to-build-rhel-ipa-rpms-for-centos-5 >That mostly looks to be a waste of time to me, specially given that Red Hat have made it public that FreeIPA might not really ever be a RHEL product line, and if it does make it, the packaging format etc will be very different from whats out there at the moment. And to the idiot who wrote that article on howtoforge : ( how do they find such brain dead morons ? ) directly url'ing the testing repo is really not recommended. - KB
Craig White wrote:> doing some googling, this seems to be about the most current/relevant > thing I have found wrt to running freeipa server on CentOS > > http://howtoforge.com/how-to-build-rhel-ipa-rpms-for-centos-5 > > which I'm not totally adverse to doing but I have to ask, is there > something packaged? (I've looked in 'testing' and in 'extras' and in > epel) > > Has anyone followed some other instructions? > > Craig >I spoke with Simo Sorce at the Fosdem event regarding that (having IPA/FreeIPA rpms sitting in the Extras repository) Due to the fact that Red Hat made it clear now that the actual RHEIPA will be discontinued (at least in its actual form and will probably change to something else ...) we still don't know what direction to take. Rebuilding FreeIPA is probably possible too but how long will that be possible ? FreeIPA isn't looking at being backward compatible and don't focus on RHEL interopability. It can probably work for a certain time, but surely not as long as an Enterprise timelife ... That's maybe worth discussing it though. On the other hand, centos-ds is in the testing repo for a while and there were not a lot of feedback : the plan is/was to move it to extras when enough testing/reports have hit the -devel list ... -- -- Fabian Arrotin idea=`grep -i clue /dev/brain` test -z "$idea" && echo "sorry, init 6 in progress" || sh ./answer.sh
I have heard rumours from some Red Hat employees that IPA will be integrated into Spacewalk this was about 1.5 months ago which would also make sense since Spacewalk is supposed to be their single point of management tool. But as I said it's rumours. Regards Per Qvindesland --- Original message follows --- SUBJECT:?Re: [CentOS] FreeIPA FROM: ?Fabian Arrotin TO:?"CentOS mailing list" DATE:?08-04-2009 13:26 Craig White wrote:> doing some googling, this seems to be about the mostcurrent/relevant> thing I have found wrt to running freeipa server on CentOS > > http://howtoforge.com/how-to-build-rhel-ipa-rpms-for-centos-5 > > which I'm not totally adverse to doing but I have to ask, is there > something packaged? (I've looked in 'testing' and in 'extras' andin> epel) > > Has anyone followed some other instructions? > > Craig >I spoke with Simo Sorce at the Fosdem event regarding that (having IPA/FreeIPA rpms sitting in the Extras repository) Due to the fact that Red Hat made it clear now that the actual RHEIPA will be discontinued (at least in its actual form and will probably change to something else ...) we still don't know what direction to take. Rebuilding FreeIPA is probably possible too but how long will that be possible ? FreeIPA isn't looking at being backward compatible and don't focus on RHEL interopability. It can probably work for a certain time, but surely not as long as an Enterprise timelife ... That's maybe worth discussing it though. On the other hand, centos-ds is in the testing repo for a while and there were not a lot of feedback : the plan is/was to move it to extras when enough testing/reports have hit the -devel list ... -- -- Fabian Arrotin idea=`grep -i clue /dev/brain` test -z "$idea" && echo "sorry, init 6 in progress" || sh ./answer.sh _______________________________________________ CentOS mailing list CentOS at centos.org http://lists.centos.org/mailman/listinfo/centos -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20090408/d82258c4/attachment-0002.html>
Rob Kampen wrote:> I've been watching the discussion and read the RHEL docs about IPA and > thought "At Last" something that brings together all the bits for the > little guy. Now it appears the RH is going to drop the ball. > I have tried OpenLDAP and currently have a CentOS-DS running but am > missing the bits that glue it all together. The actual core services > (LDAP (either variant) Kerberos PAM samba etc) are simple enough to > install on CentOS but the stuff that makes it "just work" is very > difficult for me to get my head around and thus I've never actually > got a setup working well enough to risk on my clients.I have started with SME: http://wiki.contribs.org/Main_Page This is a good NT Domain + equiv on Centos 4.7 and they have Centos 5.2 (I hope now 5.3) in beta. I have not looked enough into their roadmap to see what is being done with LDAP... Another effort on Fedora is Amahi.org. This is more a home product with a WorkGroup orientation. The inclusion of home apps like streaming music makes it very attractive. SME is a well organized effort, originally back? by Mitel. Amahi started as a one-man effort (though the one man behind it has impressive credentials) and has developed a 'plugin' community. Craig well knows the efforts of a couple of k12 guys to get some SAMBA integration together (http://majen.net/smbldap/). This seems to have stagnated. I am hoping that SME continues to evolve. Their VoIP version is the perfect place to get serious with LDAP.
Reasonably Related Threads
- Remote identity management
- Authentication against FreeIPA without AD
- [PATCH server] add server-side groundwork for remote freeipa server
- dnf-makecache.service failing every few days and dnf-automatic.service samba freeipa issues (again).
- [PATCH 0/4] sysprep: add FreeIPA offline unenrollment (RHBZ#1789592)