Uberleet

Linux Systems Articles for better insights

#ldap Articles


Discovered major Issues with Gitlab LDAP Functionality

It seems like Gitlab has a pretty critical bug regarding LDAP accounts. The issue is brought up with Gitlab lots, but the issues seem to sit idle for now. It is impossible to start your organization on Gitlab with local users, and then switch to LDAP when your company matures …

FreeIPA admin account reset

Sometimes the 'admin' account can get locked with FreeIPA which will immediately shutdown the administration site with '500: Internal Server Error' and other symptoms. You will know a lockout is in effect if you run kinit admin on the IPA host and get kinit: Clients credentials have been revoked while …

Xen Hints

Add local iso images SR mkdir -p /var/opt/xen/iso_import/ xe sr-create name-label=ISO_IMAGES_LOCAL type=iso device-config:location=/var/opt/xen/iso_import/ device-config:legacy_mode=true content-type=iso host-uuid=ENTER SOMETHING HERE wget https://buildlogs.centos.org/rolling/7/isos/x86_64/CentOS-7-x86_64-Minimal-1609-01.iso Clone a VM VM must be halted …

Creating Readonly LDAP Service Accounts for FreeIPA

Often times I need to create a read-only service account for performing searches and authentication. You could delegate the permissions to a regular user account, but there are limitations: User accounts are too powerful for auth. User accounts password are subject to expiration. It's a better idea to create a …

The single biggest gripe I have with pfSense.

The single biggest gripe I have with pfSense. I install pfSense in network situations where I want to protect servers in a datacenter or colo, and have no clients on the LAN side. You can turn on SSH by the vga console, but getting the web GUI is a different …