In my case krb5kdc ist running out of leck mich, cause the host system hasn't realy enough system resources.

The correct thing to do is adjust net.ipv4.tcp_max_syn_backlog to a high enough value that it no longer fires this warning.

You will probably also want to adjust the TCP stack in general to have more memory.

Continue reading...

Sometimes you'll need to setup a single point of authentification for e.g. to centralize stuff. 

I've found a nice Document, about Integrating Linux systems with Active Directory using Open Source Tools from 2017.

https://www.heinlein-support.de/sites/default/files/slac2017_Integrating-Linux-Systems-With-Active-Directory-Using-OpenSource-Tools.pdf

Redhat, Autor: Torsten Scherf

And an additional Link from Redhat with an interesstig post from Dmitri Pal from 2014.

https://rhelblog.redhat.com/2015/02/04/overview-of-direct-integration-options/

 

 

 

Continue reading...

is about a locale issue during a foreman setup on CentOS 7.

locale environment variables were bad; continuing with LANG=C

In my case the output of locale -a showed en_US.utf8 but the output of env and the line line in /etc/locale.conf reads different.
en_US.UTF-8 which seams to be wrong or not translated correctly.
Long Story short, either export the correct settings or update the /etc/locales.conf file so that it read like this for example

LC_ALL=en_US.utf8
LANG=en_US.utf8
LANGUAGE=en_US.utf8

Continue reading...

short but sweet

firewall-cmd --permanent --zone=public --add-service=http
firewall-cmd --permanent --zone=public --add-service=https
firewall-cmd --reload

Continue reading...

common on recent harware changes
First boot into the rescue mode, then change to the boot directory

cd /boot

perform a copy of the current files as security purpose

cp -p initramfs-3.10.0-693.17.1.el7.x86_64.img initramfs-3.10.0-693.17.1.el7.x86_64.img.bak

build a new one

dracut -f -H initramfs-3.10.0-693.17.1.el7.x86_64.img 3.10.0-693.17.1.el7.x86_64

Continue reading...