- Vagrant
- vagrant-hosts plugin
Install vagrant-hosts plugin:
vagrant plugin install vagrant-hosts
And then:
vagrant up
This step takes a long time where nothing appears to happen, as it has to generate private keys on a virtual machine. On a 2012 MacBook Pro 2 GHz Intel Core i7 with 16 GB of RAM and an SSD, the vagrant up process took about 12 minutes.
Connect to the FreeIPA vm and launch kadmin.local
vagrant ssh
sudo kadmin.local -x ipa-setup-override-restrictions
Create the new principal and generate its keytab file
addprinc -randkey host/newserver.example.com
ktadd -k /etc/krb5.keytab.newserver host/newserver.example.com
quit
Finally, copy the keytab to the server: scp /etc/krb5.keytab.newserver [email protected]:/etc/krb5.keytab
A really basic FreeIPA server.
Sets up a domain named "example.org", with both the Directory Manager and admin passwords set to "password".
This also forwards ports 443 and 389 as 4443 and 13389, respectively.
You'll probably need to insert an entry into your local hosts file that looks like this in order to use the FreeIPA UI:
192.168.65.4 freeipa.example.org