similar to: puppet and kerberos keytabs

Hi, I am testing https://github.com/puppetlabs/puppetlabs-firewall and get this error: err: Could not prefetch firewall provider ''iptables'': private method `gsub'' called for nil:NilClass I don''t know ruby so any help appreciated! -- Bjørge Solli -- You received this message because you are subscribed to the Google Groups "Puppet Users" group.

https://bugs.freedesktop.org/show_bug.cgi?id=27455 Summary: dualhead not working, second display always black Product: xorg Version: unspecified Platform: x86 (IA32) OS/Version: Linux (All) Status: NEW Severity: normal Priority: medium Component: Driver/nouveau AssignedTo: nouveau at

Hi I''m currently learning how AJAX is working and found prototype.js interesting. But I have some issues that might be because of misusage: http://brasilia.nersc.no/test/PyTest/AJAX.html When I use this in Firefox2 it correctly fills the first select, using opera9 it is filled, but it just shows a list of "blank" options (no description), and in IE6 it doesn''t get

Hi, I''m runing a Fedora Core 6 on a Power Edge with Xeon Cranford that I planning to running Windows as a guest S.O. and reading "Fedora Xen Quickstar FC6" as document to install Xen on this server. This document recomend a "grep vmx /proc/cpuinfo" test to verify if computer is Intel VT supported. Running this command I don''t find any information about vmx.

hi users I'm trying: $ realm join ... and I see that keytabs are not ok, I think, right? >setspn -L dzien Registered ServicePrincipalNames for CN=DZIEN,OU=private,DC=my,DC=dom te,DC=cam,DC=ac,DC=uk: HOST/dzien.private.my.dom HOST/DZIEN seems to me that @AD.MY.DOM is missing? is this expected behavior and missing keytabs should be added manually? many thanks, L.

Hi guys am looking for some guidance on how I can generate some keytab files from a samba 4 DC I been following a tutorial that states some bits on the windows side such as creating an spn C:\Users\Administrator>setspn -A host/test.sondrel.com at SONDREL.COM Test Registering ServicePrincipalNames for CN=Test,OU=Machines,DC=sondrel,DC=com host/envy.sondrel.com at SONDREL.COM Updated

I am looking for a supplier of Digium hardware in Canada. Any suggetions? Thanks, Adi

1. I get the following error when I run “puppet device’ err: Could not request certificate: Could not write /var/opt/lib/pe-puppet/devices/certname/ssl/private_keys/certname.pem to privatekeydir: Permission denied - /var/opt/lib/pe-puppet/devices/certname/ssl/private_keys/certname.pem Any thought? Thanks, -- You received this message because you are subscribed to the Google Groups

Hello! Our organization has since June had problems with samba on our web server incrementing keytab version numbers every month - precisely every month. Since apache2 with mod_auth_kerb isn't made aware of this, all our web sites go 503. The manual solution has been exporting new keytabs and reloading apache, but we haven't figured out why the KVNOS are incremented in the first place.

Hello, I installed Samba4 according to the HOWTO. The provisioning created a user (dns) and a keytab for DNS updates, but the service principal in the keytab seems to be wrong for me (the domain name instead of ns1.domainname). What would be the correct way of changing / adding service principals associated with a user and re-generating the keytab? I got the dns updates working by adding a

Hi, I am using the cloud provisioner to bootstrap some ec2 nodes, and these clients are signed using a randomly generated certname, which is put in /etc/puppet.conf at the bootstrap time (eg certname = d7bcd693-73fd-495f-0876-ff91ea11111e). But my puppet code repo also manages the puppet.conf file, so the file will be overwritten on the client at the first puppet run. Nevertheless, i should not

Suppose I have the first vector: c(1, 6, 8, 9) I will like to create a second vector of size 10 composed of 0 and 1's. The second vector will be composed of four 1's and six 0's. The position of the 1's will be specificed by the first vector. So essentially, I want a second vector in the form: c(1, 0, 0, 0, 0, 1, 0, 1, 1, 0) Any help is greatly appreciated! -- View this message

Hi, I have a puppetmaster - agent architecture. I have a module for the vsftpd configuracion in the agents. The configuration of the value ''max_per_ip'' in the agents may vary. This is a line of the manifest: $max_per_ip = hiera(''max_per_ip'',10) I want to specify different values for each agent using hiera. The problem is I am only able to specify the

I''m having a heck of a time trying to fix #1178, which is a problem related to inconsistent node names, and it all stems from the ''node_name'' setting. In the default setup, your certificate gets created with your host''s fully qualified node name, and Puppet uses the value from the certificate for everything. In addition, there''s a setting,

Hi all I''m trying to set up a separate puppet master and client on EC2. I''ve used two instances of CentOS5.4 with nothing other than the base install and have installed puppet via the ruby gems. Puppet is at 2.6.4 on both machines. I''ve been following the guide to get a basic configuration working (http://docs.puppetlabs.com/guides/configuring.html) with a little tweak

I am trying to come up with a workable solution in managing numerous Mac workstations allowing a high degree of flexibility with regards to certs. My puppet environment is setup to application installation on machines that have been ''imaged'' with a base OS and the puppet and facter apps. So, when a Mac is ''imaged'' and subsequently re-booted, puppet is run at

Hello, Let''s consider the scenario when a client node in a puppet environment gets compromised. In case some of the puppet modules make decisions based on agent facts, these modules are potentially exposed to abuse from the malicious puppet agent. For example, if a class has: if $some_fact == ''some value'' { # deploy some configuration } then the compromised node

I want to manage my puppet.conf files on every node, via a puppet module on the puppetmaster. However, in puppet.conf on each of my nodes, I also *must* specify the certname attribute. (This is because my company''s NIS domain doesn''t match it''s DNS domain and the fqdn comes out erroneous unless I enforce the DNS name with the certname attribute.) Does anyone know how

> Looking for a simple, effective a minimum execution time solution. > > For a vector as: > > c(0,0,1,0,1,1,1,0,0,1,1,0,1,0,1,1,1,1,1,1) > To transform it to the following vector without using any loops: > (0,0,1,0,1,2,3,0,0,1,2,0,1,0,1,2,3,4,5,6) > Appreciate any suggetions. [[alternative HTML version deleted]]

Hm instresting way. Whats the difference in createing the HTTP/spn with net ads or samba tool ( besides de found bug ) I'll go try this out. You remember the "squid" spn/upn problem, this solved it also. The squid kerberos group plugin now correctly detects the HTTP spn. Thanks for trying out. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba