Anda di halaman 1dari 3

echo ------------------FREEIPA----------echo Configurar tarjeta de red

cd /etc/sysconfig/network-scripts/
gedit ifcfg-eno...
gedit /etc/sysconfig/network-scripts/ifcfg-eno16777736
echo Configurar tarjeta de red con estos parmetros:
IPADDR="192.168.1.5"
PREFIX="24"
GATEWAY="192.168.1.1"
DNS1="192.168.1.20"
echo configurar nombre de host y dominio
hostnamectl set-hostname srvuiodc01.proxima.gob.ec
echo "192.168.1.5 srvuiodc01.proxima.gob.ec srvuiodc01" >> /etc/hosts
echo
service network restart
echo
echo configurar corta fuegos
firewall-cmd --permanent --add-port=80/tcp
firewall-cmd --permanent --add-port=443/tcp
firewall-cmd --permanent --add-port=389/tcp
firewall-cmd --permanent --add-port=636/tcp
firewall-cmd --permanent --add-port=88/tcp
firewall-cmd --permanent --add-port=464/tcp
firewall-cmd --permanent --add-port=53/tcp
firewall-cmd --permanent --add-port=88/udp
firewall-cmd --permanent --add-port=53/udp
firewall-cmd --permanent --add-port=123/udp
echo

echo Actualizar y reiniciar:


yum -y update
echo
echo Instalar librerias necessarias
yum -y install vim wget tmux
echo
yum -y install epel-release
echo
yum -y install haveged
echo
echo Reiniciar Servicios
systemctl start haveged.service
systemctl enable haveged.service
echo
echo Configura entropia que es opcional,depende si la capacidad del equipo/maquina virtual es baja
file:///C|/Users/Paul/Desktop/AD%20LINUX/AD/FREEIPA.TXT[17/10/2016 8:13:57]

yum -y install pwgen


pwgen -s 16
echo
echo instalar dns y freeipa
yum -y install bind-dyndb-ldap
echo
yum -y install ipa-server ipa-server-dns
echo
echo Configurar FREEIPA
ipa-server-install
--------------------------------echo Seguir los pasos de instalacion de zonas y contestar a las preguntas
echo Do you want to configure integrated DNS (BIND)?: yes
echo presionar enter: srvuiodc01.uio.secap.gob.ec
echo presionar enter: uio.secap.gob.ec
echo presionar enter: uio.secap.gob.ec
echo poner contrasea admin: 12345678
echo confirmar contrasea: 12345678
echo poner contrasea admin IPA: 12345678
echo confirmar contrasea poderosa: 12345678
Existing BIND configuration detected, overwrite: yes
echo DND Forwaders: yes
echo IP DNS Forwaders: 192.168.1.20
echo IP DNS Forwaders: 8.8.8.8
echo IP DNS Forwaders: 8.8.4.4
echo Do you want to configure the reverse zone?: yes
echo Please specify the reverse zone name: Presionar enter
The IPA Master Server will be configured with:
Hostname:
srvuiodc01.proxima.gob.ec
IP address(es): 192.168.1.5, 192.168.1.5
Domain name: proxima.gob.ec
Realm name: PROXIMA.GOB.EC
BIND DNS server will be configured to serve IPA domain with:
Forwarders: 192.168.1.20, 8.8.8.8, 8.8.4.4
Reverse zone(s): 1.168.192.in-addr.arpa.
echo Continue to configure the system with these values: yes
echo esperar hasta que termine de instalar...

echo Se debe visualizar la siguiente salida


Setup complete
Next steps:
1. You must make sure these network ports are open:
TCP Ports:
* 80, 443: HTTP/HTTPS
* 389, 636: LDAP/LDAPS

file:///C|/Users/Paul/Desktop/AD%20LINUX/AD/FREEIPA.TXT[17/10/2016 8:13:57]

* 88, 464: kerberos


UDP Ports:
* 88, 464: kerberos
* 123: ntp

echo Probar en otra computador, asegurandose de colocar el DNS correspondiente


echo en este caso configurado con la ip 192.168.1.20
echo Probar en una navegador con la direccion del equipo freeip, en este caso 192.168.1.5

file:///C|/Users/Paul/Desktop/AD%20LINUX/AD/FREEIPA.TXT[17/10/2016 8:13:57]