Uberleet

Linux Systems Articles for better insights

freeipa Articles


Will be starting D-RATS development

I've been talking to Ray with Icom America and he has sent me some bluetooth hardware to start development on D-Rats, an amateur radio TCP/IP gateway. Special thanks to Ray! The first thing I'd like to do is get the interface working with QT instead of GTK as it's …

FreeIPA iptables setup

I personally find management easier using Iptables for FreeIPA because it allows you to easily add -s flags for source IP ranges when needed. FirewallD has an extended awkward syntax that can do it, but why? First disable Firewalld sudo systemctl disable firewalld sudo systtemctl stop firewalld Install Iptables Service …

FreeIPA admin account reset

Sometimes the 'admin' account can get locked with FreeIPA which will immediately shutdown the administration site with '500: Internal Server Error' and other symptoms. You will know a lockout is in effect if you run kinit admin on the IPA host and get kinit: Clients credentials have been revoked while …

Xen Hints

Add local iso images SR mkdir -p /var/opt/xen/iso_import/ xe sr-create name-label=ISO_IMAGES_LOCAL type=iso device-config:location=/var/opt/xen/iso_import/ device-config:legacy_mode=true content-type=iso host-uuid=ENTER SOMETHING HERE wget https://buildlogs.centos.org/rolling/7/isos/x86_64/CentOS-7-x86_64-Minimal-1609-01.iso Clone a VM VM must be halted …

Creating Readonly LDAP Service Accounts for FreeIPA

Often times I need to create a read-only service account for performing searches and authentication. You could delegate the permissions to a regular user account, but there are limitations: User accounts are too powerful for auth. User accounts password are subject to expiration. It's a better idea to create a …