Join FreeIPA

WORK IN PROGRESS

This will guide you how to join Gentoo to an existing FreeIPA domain. This guide will NOT describe how to install FreeIPA server.

FQDN must work
Returned hostname must match IPA hostname and primary hostname of keytab.

USE flags
You must enable following USE flags

IPA Server part
Login to your freeIPA server add-host and get-keytab

Configuration
Change $IPA_DOMAIN to your FreeIPA domain and $IPA_SERVER to your FreeIPA server. Change $REALM.COM to your FreeIPA kerberos REALM. Change $domain.com to your DNS domain.

PAM
Enable SSS in PAM

Usage
(Explain how to use the package/software/tool/utility in this section.)

Invocation
(Remove this section if not applicable.)

Troubleshooting
(Troubleshoot issues in this section. Describe each issue in a separate section. It's often a good idea to use the exact error message a user might see as the section title. Remove if no issues are known.)

Issue 1
When X happens, Y is how you fix it.

External resources

 * (Link to external resources [outside the Wiki] using bullet points in this section. It is common for the information in this section to be full sentences that are links.)