search for: passalgo

...time the message is #systemctl status sssd |.... sssd[be[default]][2732]: Could not start TLS encryption. error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate)| In my kickstart file I use: auth? --useshadow --enableldaptls --enablecache? --passalgo=sha512 --enableldap --enableldapauth --ldapserver="ldaps://my.ldap.server.fr" --ldapbasedn=dc=my,dc=base,dc=dn Then in a post install script I download the server and ca certificates and stops nslcd that I do not use: echo "TLS_REQCERT allow">>/etc/openldap/ldap.conf...

Hi Team, I have the kick start file where my root password is store like # Root password rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/ # System authorization information auth --useshadow --passalgo=sha512 Is there any way to decry pt the password and get it as plain text. I know single user mode works but my case it in remote site. Thanks, Jegadeesh

...tificate) I have run a similar command as I did on the remote servers, replacing ldap://localldapserver by ldaps://ldap.mycompany.com: authconfig --enableldap --enableldapauth --enablecache --enablemkhomedir --ldapserver=ldaps://ldap.mycompany.com --enableldaptls --ldapbasedn=dc=mycompany,dc=com --passalgo=sha256 --updateall and I put the CA certificate at the right place. (either explicitly pointing to it TLS_CACERT or downloading it to /etc/openldap/cacerts vi system-configuration-authentication) In all my various tests, ldapsearch -x returns the content of the remote LDAP, so I guess that at lea...

The company where I work is mostly a Windows shop, but I run a few CentOS servers and desktops. I have configured my systems as follows with Kickstart: authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX \ --nisserver=nis1.XXX.com,nis2.XXX.com --useshadow --enablekrb5 \ --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com --krb5adminserver=ldap.XXX.com The /etc/nsswitch.conf file looks like this: passwd: files nis shadow: files nis group: files nis...

I had the habit to use authconfig --passalgo=sha512 --update but in EL8 its not supported anymore. The authselect-compat package is installed (and it says "not supported anymore and have no effect). Whats the equivalent call using the new tool "authselect"? -- Thanks Leon

...sssd > > | .... > sssd[be[default]][2732]: Could not start TLS encryption. error:14090086:SSL > routines:ssl3_get_server_certificate:certificate verify failed (self signed > certificate)| > > In my kickstart file I use: > auth? --useshadow --enableldaptls --enablecache? --passalgo=sha512 > --enableldap --enableldapauth --ldapserver="ldaps://my.ldap.server.fr" > --ldapbasedn=dc=my,dc=base,dc=dn > > Then in a post install script I download the server and ca certificates and > stops nslcd that I do not use: > > echo "TLS_REQCERT allow&quot...

I've updated my kickstart configuration files to work with CentOS 6 and am most of the way there integrating a CentOS 6 system into our LDAP/NIS environment. My authconfig line in the kickstart file is as follows: authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX --nisserver=nis.XXX.com --useshadow --enablekrb5 --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com --krb5adminserver=ldap.XXX.com This is virtually identical to the authconfig line I was using in CentOS 5. My issue is that users cannot log in with their network (NIS) u...

...e/kickstart.cfg \ --extra-args="ks=file:/kickstart.cfg" \ --debug \ --accelerate kickstart.cfg: text install cdrom lang en_US.UTF-8 keyboard us network --onboot yes --device eth0 --bootproto dhcp --noipv6 rootpw testing123 firewall --service=ssh authconfig --enableshadow --passalgo=sha512 selinux --disable timezone --utc America/New_York bootloader --location=mbr zerombr clearpart --all --initlabel autopart reboot %packages --nobase @core %end ? Matthew Crocker President - Crocker Communications, Inc. Managing Partner - Crocker Telecommunications, LLC E: matthew at co...

...the auto mount map for home directories as shown by this excerpt from our /etc/nsswitch.conf file: passwd: files nis shadow: files nis group: files nis Our systems are configured using something similar to the following in our Kickstart config file: authconfig --enablemd5 --passalgo=sha512 --enablenis ?nisdomain=XXX \ --nisserver=nis.XXX.com,nis2.XXX.com --useshadow --enablekrb5 \ --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com --krb5adminserver=ldap.XXX.com <http://ldap.xxx.com/> where nis1 and nis2 are the local AD domain controllers. With this configuration, any use...

...+03:00 Jegadeesh Kumar <jegasmile at gmail.com>: > Hi Team, > > I have the kick start file where my root password is store like > > > # Root password > rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/ > # System authorization information > auth --useshadow --passalgo=sha512 > > > > Is there any way to decry pt the password and get it as plain text. > Well, you could bruteforce sha512 hashed password or use dictionary attack against it. No realistic way to encrypt hashed password. -- Eero

On Mar 30, 2015, at 11:08 PM, Jegadeesh Kumar <jegasmile at gmail.com> wrote: > # Root password > rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/ > # System authorization information > auth --useshadow --passalgo=sha512 Those two settings are inconsistent. The $1 at the beginning of that crypt(3) string means it?s an MD5 password. > Is there any way to decry pt the password and get it as plain text. Do you have any idea how long the original password is, and what ?alphabet? it uses? (i.e. Lowercase...

Hallo, which switch is the right one for Centos 7.6 to finish the installation. Every Installation needs an acknowledgement at the end when the network configuration is shown while installing with grafics. Thanks Ralf Von meinem iPad gesendet

...6, AMD64, or Intel EM64T #version=DEVEL # Firewall configuration firewall --enabled --http --ssh # Install OS instead of upgrade install # Use CDROM installation media cdrom # Root password rootpw --iscrypted $1$DAzH1SN3$6yzxoq6oRrXNw.qMkJU0H1 # System authorization information auth --useshadow --passalgo=sha512 # Use graphical install graphical firstboot --disable # System keyboard keyboard us # System language lang en_US # SELinux configuration selinux --enforcing # Installation logging level logging --level=debug # System timezone timezone America/Los_Angeles # Network information network --bo...

I'm ill, i'm german ... the script is looks ok, copy from a slim installation of anaconda. Insert only the "pre part" and part /boot --onpart=/dev/sda1 part / --onpart=/dev/sda2 part swap --onpart=/dev/sda3 As i wrote: Jump over to another console and the partitions are there. Sincerely Andy Am Mittwoch, den 15.02.2017, 11:16 -0800 schrieb John R

...*args, **kwargs) LVMError: lvactivate failed for swap: running lvm lvchange -a y --config devices { preferred_names=["^/dev/mapper/", "^/dev/md/", "^/dev/sd"] } redhat/swap failed Kickstart:- #version=RHEL7 # System authorization information auth --enableshadow --passalgo=sha512 # Use CDROM installation media cdrom # Run the Setup Agent on first boot firstboot --enable ignoredisk --only-use=vda # Keyboard layouts keyboard --vckeymap=us --xlayouts='us' network --device eth0 --bootproto static --ip 10.97.60.50 --netmask 255.255.255.0 --gateway 10.97.60.254...

...essfull create example before i forward special parition tests. part ignoe --onpart But Installation hang out for parition the harddisk. jump to another console partitions are ok ? Which line/lines is/are missing? Andy #version=DEVEL # System authorization information auth --enableshadow --passalgo=sha512 # Use CDROM installation media cdrom # Use graphical install graphical # Run the Setup Agent on first boot firstboot --enable ignoredisk --only-use=sda # Keyboard layouts keyboard --vckeymap=de-nodeadkeys --xlayouts='de (nodeadkeys)' # System language lang de_DE.UTF-8 # Network info...

Warren Young wrote: > On Mar 30, 2015, at 11:08 PM, Jegadeesh Kumar <jegasmile at gmail.com> wrote: >> # Root password >> rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/ >> # System authorization information >> auth --useshadow --passalgo=sha512 > > Those two settings are inconsistent. The $1 at the beginning of that > crypt(3) string means it?s an MD5 password. > >> Is there any way to decry pt the password and get it as plain text. <snip> This is all interesting, but I've got one dumb question: why do...

Hi virt, im stumped... any help would be appreciated. I normally create my VMs like this: base="http://mirror.pnl.gov/fedora/linux/releases/20/Fedora/x86_64/os/" sudo virt-install --hvm --name $vm_name$i --ram 4000 \ --disk path=/VirtualMachines/$vm_name$i,size=30 \ --location $base -x "ks=http://xxx.os21.ks$kx" HOWEVER... I'm finding that my VMs dont boot after i

Gordon Messmer wrote: > On 08/25/2016 11:35 PM, Phil Manuel wrote: >> The relevant kickstart section is:- >> >> part /boot/efi --fstype efi --grow --maxsize=200 --size=20 --ondisk=sda >> bootloader --append=" crashkernel=auto" --location=mbr --boot-drive=sda1 >> autopart --type=lvm > > A couple of things to consider: > * The documentation for

...evice eth0 --mtu=1500 --bootproto static --ip <server IP> --netmask 255.255.255.0 --gateway <our gateway> --noipv6 --nameserver 8.8.8.8 --hostname newserver rootpw --iscrypted <root password> # Reboot after installation reboot firewall --service=ssh authconfig --enableshadow --passalgo=sha512 selinux --enforcing timezone --utc Europe/Bratislava bootloader --location=mbr --driveorder=ddf1_Default --append="crashkernel=auto rhgb quiet" # The following is the partition information you requested # Note that any partitions you deleted are not expressed # here so unless you...