Open dcode opened 4 years ago
Oh, just realized there's a mistake in the snippet. You can't download the IPA cert over HTTPS because the server doesn't have a trusted certificate. I actually moved it over to an HTTP server, which FreeIPA apparently doesn't do itself anymore...at least not in the container.
I've been trying to use FreeIPA Container to manage some new infrastructure using FCOS as the primary platform. I found this comment on the fedora-coreos-tracker issues that provided some of the info, and I added some bits that seem to be required from other reading I've done.
The result, is the fcct snippet that is attached.
fcct-sssd_freeipa-snippet.yml.txt
This configuration results in a somewhat working sssd. If I'm logged in as the
core
user, I can successfully get some information, but not everything.Since sssd is clearly in the platform for this explicit purpose, can we get a working example against FreeIPA? and maybe some people might be interested in AD or something.
Thanks!