FreeIPA
banners
Contribute to FreeIPA!

From Free IPA

[edit]

IPA v2

[edit]

Current Release of IPA

The IPA v2 Release (2.1.4) is now available!

For more information about it see Release Notes. Builds for Fedora 15, 16 and rawhide are available in the Fedora repositories (you may need to enable the updates-testing repository).

To install: 

# yum install freeipa-server
# ipa-server-install

To upgrade an existing install: 

# yum update freeipa-server

NOTE: During testing one user reported a hang in the yum/rpm process. The ns-slapd process had deadlocked. If this occurs then you should kill the ns-slapd process for your realm (it will show in ps). Then restart ipa and run ipa-ldap-updater. It might look something like: 

# yum update freeipa-server
 upgrading can take a while but if it takes more than say 10 minutes it is  too long
# ps -ef |grep ns-slapd
# kill xxx
  wait for yum/rpm to finish up
# service ipa restart
# ipa-ldap-updater

Enrolled client machines do not need to be updated. ipa-client is just a configuration script.

Note: In this release the package has been renamed to "freeipa-server".

For additional installation options see: man ipa-server-install. Other documentation is available from man pages and command line help system that can be invoked by "ipa help" command.

In release candidate 2 we made a change to some LDAP operations because some were duplicated. This change causes some commands in older releases to be incompatible with the GA release. This in effect prevents pre-rc2 clients from joining GA installations, including the ipa-client package in RHEL 6.0. An updated srpm can be found here.

This build is NOT an upgrade for IPA v1.x or any previously released alpha or beta. You must install this as a fresh installation. You can migrate users following the migration procedures described in the documentation.

A tarball for the release is available at http://freeipa.org/downloads/src/freeipa-2.1.4.tar.gz

Tar balls for the earlier releases can be downloaded from here.

[edit]

Plans

See Roadmap for more information. Source is available from the development repository: see Contribute for more information.

[edit]

Bleeding Edge

Like living on the bleeding edge? Try the repo at http://jdennis.fedorapeople.org/ipa-devel/ipa-devel-fedora.repo

This contains the continuous builds of IPA and SSSD. A new build gets spun up every time we make a commit. Beware, there be dragons.

The alpha and RC releases for 2 are available in our development release repository

[edit]

IPA v1

[edit]

Current Release: 1.2.2

Version 1.2.2 is a bugfix release.
Main corrections:

  • Fix group deletion in the web UI.
  • Make the web UI work when both python-cherrypy and python-cherrypy2 are installed.
  • Fix some Python 2.6 deprecation warnings
  • Change method used to determine CAs to trust.
  • Add the CA constraint to the self-signed CA IPA generates.

NOTE: after an upgrade always run ipa-ldap-updater as root (needs to be run on each server you upgrade) to make sure all needed directory changes are uploaded as well. This command requires the Directory Manager password. The command is automatically run when you install a new master/replica.

[edit]

Downloads

Installation instructions are covered in the Installation and Deployment Guide. It is available in the Documentation section.

[edit]

Yum Repo

IPA v1 is available in the Fedora 12, 13 and 14 repos. To install simply run:

yum install ipa-server

On machines to be IPA clients replace ipa-server with ipa-client

There is no need to enable any additional repositories since this version of IPA was currently accepted into Fedora.

[edit]

v1 Notes

  • If you are upgrading an existing IPA installation see http://freeipa.org/page/NewCA for details on re-issuing the CA so it will work with Firefox 3.5+
  • If you are upgrading form a version of IPA older than 1.1.1 please make sure to also check instructions to properly fix CVE-2008-3274.

EXPORT CONTROL. As required by U.S. law, you (“Licensee”) represents and warrants that it: (a) understands that the Software is subject to export controls under the U.S. Commerce Department's Export Administration Regulations ("EAR"); (b) is not located in a prohibited destination country under the EAR or U.S. sanctions regulations (currently Cuba, Iran, Iraq, North Korea, Sudan and Syria); (c) will not export, re-export, or transfer the Software to any prohibited destination, entity, or individual without the necessary export license(s) or authorizations(s) from the U.S. Government; (d) will not use or transfer the Software for use in any sensitive nuclear, chemical or biological weapons, or missile technology end-uses unless authorized by the U.S. Government by regulation or specific license; (e) understands and agrees that if it is in the United States and exports or transfers the Software to eligible end users, it will, as required by EAR Section 740.17(e), submit semi-annual reports to the Commerce Department's Bureau of Industry & Security (BIS), which include the name and address (including country) of each transferee; and (f) understands that countries other than the United States may restrict the import, use, or export of encryption products and that it shall be solely responsible for compliance with any such import, use, or export restrictions.

A tarball is available at http://freeipa.org/downloads/src/freeipa-1.2.2.tar.gz

Retrieved from "http://www.freeipa.com/page/Downloads"
Views Article Discussion Edit History
Personal tools:  Log in / create account
Toolbox What links here Related changes Upload file Special pages Printable version