| Server Configuration |
| /etc/ipa | The main FreeIPA configuration directory. |
| /etc/ipa/default.conf | The primary configuration file for FreeIPA. |
| /etc/ipa/ca.crt | The CA certificate issued by the FreeIPA server's CA. |
| ~/.ipa/ | A user-specific FreeIPA directory that is created on the local system in the system user's home directory the first time the user runs a FreeIPA command. |
| FreeIPA Logs |
| ~/.ipa/log/cli.log | The log file for all XML-RPC calls and responses by the FreeIPA command-line tools. This is created in the home directory for the system user who runs the tools, who may have a different name than the FreeIPA user. |
| /var/log/ipaclient-install.log | The installation log for the client service. |
| /var/log/ipaserver-install.log | The installation log for the FreeIPA server. |
| System Services |
| /etc/rc.d/init.d/ipa | The FreeIPA server init script. |
| /etc/rc.d/init.d/ipa_kpasswd | The init script for the FreeIPA control daemon for Kerberos passwords. |
| /var/run/ipa_kpasswd.pid | The PID file for the Kerberos password daemon used by the FreeIPA service. |
| Web UI |
| /etc/ipa/html | A symlink directory in the main configuration directory for the HTML files used by the FreeIPA web UI. |
| /etc/httpd/conf.d/ipa.conf | | /etc/httpd/conf.d/ipa-rewrite.conf |
| The configuration files used by the Apache host for the web UI application. |
| /etc/httpd/conf/ipa.keytab | The keytab file used by the web UI service. |
| /usr/share/ipa | The main directory for all of the HTML files, scripts, and stylesheets used by the web UI. |
| /usr/share/ipa/ipa-rewrite.conf | | /usr/share/ipa/ipa.conf |
| The configuration files used by the Apache host for the web UI application. |
| /usr/share/ipa/updates | Contains any updated files, schema, and other elements for FreeIPA. |
| /usr/share/ipa/html | Contains the HTML files, JavaScript files, and stylesheets used by the web UI. |
| /usr/share/ipa/ipaclient | Contains the JavaScript files used to access Firefox's autoconfiguration feature and set up the Firefox browser to work in the FreeIPA Kerberos realm. |
| /usr/share/ipa/migration | Contains HTML pages, stylesheets, and Python scripts used for running the FreeIPA server in migration mode. |
| /usr/share/ipa/ui | Contains all of the scripts used by the UI to perform FreeIPA operations. |
| /var/log/httpd | The log files for the Apache web server. |
| Kerberos |
| /etc/krb5.conf | The Kerberos service configuration file. |
| SSSD |
| /etc/sssd/sssd.api.d/sssd-ipa.conf | The configuration file used to identify the FreeIPA server, FreeIPA Directory Server, and other FreeIPA services used by SSSD. |
| /var/log/sssd | The log files for SSSD. |
| 389 Directory Server |
| /var/lib/dirsrv/slapd-REALM_NAME | All of the schema, configuration, and database files associated with the Directory Server instance used by the FreeIPA server. |
| /var/log/dirsrv/slapd-REALM_NAME | Log files associated with the Directory Server instance used by the FreeIPA server. |
| Dogtag Certificate System |
| /etc/pki-ca | The main directory for the FreeIPA CA instance. |
| /etc/pki-ca/conf/CS.cfg | The main configuration file for the FreeIPA CA instance. |
| /var/lib/dirsrv/slapd-PKI-IPA/ | All of the schema, configuration, and database files associated with the Directory Server instance used by the FreeIPA CA. |
| /var/log/dirsrv/slapd-PKI-IPA/ | Log files associated with the Directory Server instance used by the FreeIPA CA. |
| Cache Files |
| /var/cache/ipa | Cache files for the FreeIPA server and the FreeIPA Kerberos password daemon. |
| System Backups |
| /var/lib/ipa/sysrestore | Contains backups of all of the system files and scripts that were reconfigured when the FreeIPA server was installed. These include the original .conf files for NSS, Kerberos (both krb5.conf and kdc.conf), and NTP. |
| /var/lib/ipa-client/sysrestore | Contains backups of all of the system files and scripts that were reconfigured when the FreeIPA client was installed. Commonly, this is the sssd.conf file for SSSD authentication services. |
发表评论 取消回复