Correct me if I’m wrong, but I think the sudo and hosts management would either not be doable or at the least a higher level of effort through autos/nfs/nis.

If you're looking for the ansible role that i used to set things up, the package is ansible-freeipa . if you're asking about the ipa packages themselves, those are called ipa-server, and ipa-client for the server and client respectively

And thanks for watching!

Great question! You can define public ssh keys for those users in ID overrides in 'Default Trust View'. This is documented: What attributes can be overridden: access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/managing_idm_users_groups_hosts_and_access_control_rules/using-an-id-view-to-override-a-user-attribute-value-on-an-idm-client_managing-users-groups-hosts#attributes-an-ID-view-can-override_using-an-id-view-to-override-a-user-attribute-value-on-an-IdM-client - and - Specifics for AD users in Default Trust View: access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/managing_idm_users_groups_hosts_and_access_control_rules/assembly_using-id-views-for-active-directory-users_managing-users-groups-hosts#con_how-the-default-trust-view-works_assembly_using-id-views-for-active-directory-users

Red Hat Identity Manager (IdM) allows you to specify a home directory that should be used for an account. That setting will be used by any machine authenticating users through IdM, however, how you choose to implement that home directory is up to you, the administrator. The *nix method of solving this is to provide an NFS mountable directory for each user's home directory, then adding the autofs daemon and some configuration to each client machine such that when the user logs in and their directory is accessed, autofs will retrieve and mount the directory in place on the machine being used. You can also use CIFS shares in a similar fashion. autofs can also be configured to use these, but windows machines can also access this format of disk share. With this method, you could use a linux system with samba to provide the shared directories or a windows machine or a SAN/NAS with CIFS sharing capability. Here is a product document on the subject as well: access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/using_external_red_hat_utilities_with_identity_management/using-automount-in-idm_using-external-red-hat-utilities-with-idm

Hi let's say i added a client called (server a) to idm can i see the users already created in server a ? If not is that possible to imported local users in client server to idm with their gid and uid ? Thank you

We're sorry you had this experience.

agreed