Configurar IPA Cliente

[root@mailredorbita ~]#  yum install -y ipa-client ipa-admintools

[root@mailredorbita ~]# ipa-client-install –enable-dns-updates –force-ntpd

Discovery was successful!

Client hostname: mailredorbita.redorbita.com

Realm: REDORBITA.COM

DNS Domain: redorbita.com

IPA Server: freeipa02.redorbita.com

BaseDN: dc=redorbita,dc=com
Continue to configure the system with these values? [no]: yes

Synchronizing time with KDC…

Attempting to sync time using ntpd.  Will timeout after 15 seconds

User authorized to enroll computers: admin

Password for admin@REDORBITA.COM:

Successfully retrieved CA cert

Subject:     CN=Certificate Authority,O=REDORBITA.COM

Issuer:      CN=Certificate Authority,O=REDORBITA.COM

Valid From:  Fri Nov 11 15:49:44 2016 UTC

Valid Until: Tue Nov 11 15:49:44 2036 UTC
Enrolled in IPA realm REDORBITA.COM

Created /etc/ipa/default.conf

New SSSD config will be created

Configured sudoers in /etc/nsswitch.conf

Configured /etc/sssd/sssd.conf

Configured /etc/krb5.conf for IPA realm REDORBITA.COM

trying https://freeipa02.redorbita.com/ipa/json

Forwarding ‘ping’ to json server ‘https://freeipa02.redorbita.com/ipa/json’

Forwarding ‘ca_is_enabled’ to json server ‘https://freeipa02.redorbita.com/ipa/json’

Systemwide CA database updated.

Added CA certificates to the default NSS database.

Adding SSH public key from /etc/ssh/ssh_host_rsa_key.pub

Adding SSH public key from /etc/ssh/ssh_host_ecdsa_key.pub

Adding SSH public key from /etc/ssh/ssh_host_ed25519_key.pub

Forwarding ‘host_mod’ to json server ‘https://freeipa02.redorbita.com/ipa/json’

SSSD enabled

Configured /etc/openldap/ldap.conf

NTP enabled

Configured /etc/ssh/ssh_config

Configured /etc/ssh/sshd_config

Configuring redorbita.com as NIS domain.

Client configuration complete.