Þ•-„ ‘ì0N1€O‚Ò#Ø#ü/ $P#u!™(»!ä %.5 >HP YfcGÊI \ hs ƒ‘£‘©;Phw_”ô(ù"+?QXnx€;ù+5a wƒ™­ÄÌ"ä $ ? d` Å Ø Eà @&! g! s! €!!“!%¢!eÈ!."g="¥"¬" ¾" Ê"Ø"ë"###"#4#9# O# ]#k# ##!¡#Ã# È#Ó# ×# ä# ñ# þ# $$$%$($:$ C$M$U$\$Rz$Í$ Ô$ á$ï$ÿ$h%°p%!&2&€B&5Ã&1ù&0+',\'/‰'0¹'+ê'!(-8(Äf(Î+)Õú);Ð*" +!/+"Q+#t+˜+ ¯+ ¹+Æ+Ï+ç+ù+,,t, “,Ÿ,º,6Ú,-"-[*-†-Ž-¢-¿-Ð-á-'ø-] .~..L“.à.è.////6/?/ \/g/x/ ‰/”/(¬/0Õ/00170i0q0.‰0)¸0[â0_>1+ž16Ê12#2:2M2`2s2†2›2¹25Ð2 3'3@<3*}3,¨3 Õ3+ö3T"4Vw4GÎ4:51Q5#ƒ56§5.Þ5. 6*<6%g6(6*¶6Cá6'%7-M7/{7$«7<Ð75 8=C818:³8#î819-D97r91ª9-Ü9+ :>6:?u:)µ:+ß: ;*+;MV;O¤;Nô;9C<0}<"®<5Ñ<X=-`=)Ž=$¸='Ý=)>B/>&r>,™>.Æ>#õ>&?%@?>f? ¥?1Æ?Dø?;=@y@1–@(È@;ñ@D-A3rA)¦A(ÐA6ùA20B6cB0šB)ËBXõB(NC*wC0¢CÓCãC-D1DG¿DE'EFEDfE4«EàEôEF4'F+\F2ˆF'»F·ãFO›HëHíHoIuI+ŒI¸I"ÕI%øIJ4>J+sJŸJ¤J­J¾JÇJÎJ ×JáJéJ òJ§üJd¤Kf L pL|L‘L©L½LÚL¬áL(ŽM·MÌMÓM}ãMaNKhN ´NÁNÖN ìN&ùN O©2O]ÜOX:P“P®PÂP"ÙPüP Q&%Q4LQ4Q7¶Q,îQR¬R¿RgÇRV/S†S™S¯SÅSËS3ÛS€TT{¦T"U)UFU YUdU~U›U U©U¸UÐUÕU ðUûU VV!1VSV oV yV‡V ‹V•VªV¿VÓV ×VáVòV"õVW(W9WHW:ZWZ•WðW÷W XX 9X¨GXððX áYZöZF[@][Až[;à[@\4]\I’\#Ü\>]?]ùO^áI_l+`9˜`3Ò`6a:=axa”a¤a¹aÈaÝa úa$b -b„;bÀbÒb.êb[cucˆcqcd d*"d Md[dtd5ƒdx¹d2eIe|Pe Íe-Øeff 7f Af2Mf€f•f §f Èf2Öf6 gH@gH‰gHÒgh .h=OhFhvÔh‚KiIÎiTj!mj:j!Êj!ìjk,kJk,ik#–kLºkBl0JlV{l.ÒlFm6HmEmgÅm}-nQ«nEýnHCo2ŒoY¿oHpHbp2«p?ÞpBqHaqRªq/ýq6-rIdr.®rsÝr@QsW’sKês@6t-wt0¥t-ÖtBu0GuDxu1½uWïuVGv.žvFÍv6wEKwY‘wnëwTZxE¯xHõx2>yYqy†ËyHRz2›z?Îz?{DN{R“{/æ{4|IK|.•|CÄ|4}L=}&Š}N±}K~9L~†~-¢~$Ð~sõ~[i=Å?€CC€F‡€C΀F?Y0™cÊ9.‚?h‚V¨‚ÿ‚3ƒ/Oƒ·ƒ|7„+´„à„!þ„g …Fˆ…Ï…3å…"†^<†2›†:Ά' ‡!Ž+ #ÝÃk~#¼1ìZb¬G3áJÄË‚®òäÚ_$ˆ-õU"€í4%:qû|"î«£ª¥¶hPøÛ)§\ <xœúÀ86'mp,˜/uâýI¸ØÍàT¦5ož]·e.[ö   Ï)>,ºsó½}°¿”’È çé—Ðþi³¹wÞƒÂA%´` Ù‹7dÿ²M@ñ¤ÇÎ'ÔKgš?†÷Œ  Ì­‰¯X n‘ YVïFÅ&&ÆQ¢Üj“©rzHµ±Õ×å•(Áëè9*vùŸêðRß$!™»–ÉOæ{lÓDãcCfL tŠa2¨¾^(+…ü„ ÊW*;0-‡ÑÒBSNE=›ôyÖ¡ / between elements | selects | next screen*--enablerequiresmartcard is not supported for module 'sssd', option is ignored.Authentication ConfigurationLocal Authentication OptionsMaximal Consecutive Character RepetitionMinimal Password RequirementsOther Authentication OptionsRequired Character ClassesSmart Card Authentication OptionsUser Account ConfigurationTip: Smart cards support logging into both local and centrally managed accounts.Tip: These checks are disabled if the value is 0.Tip: This is managed via /etc/security/access.conf.ADS Realm:Ad_min Servers:Admin Server:Advanced _OptionsAlertAll configuration files which were modified by the previous authentication configuration change will be restored from backup. Revert the changes?Allow offline _loginAut_hentication Method:AuthenticationAuthentication ConfigurationAuthentication module %s/pam_%s.so is missing. Authentication process might not work correctly.BackBad smart card removal action specified.Base DN:C_haracter Classes:Cache InformationCancelCard Re_moval Action:Certificate _URL:Click this button if you did not download a CA certificate yet or you have not set the CA certificate up by other means.Control how the system verifies users who attempt to log inCreate _home directories on the first loginDo not configure _NTPDo_n't SaveDomain Administrator:Domain Controllers:Domain _administrator:Domain:Download CA CertificateEnable _fingerprint reader supportEnable _local access controlEnable _smart card supportError downloading CA certificateFingerprint authentication allows you to log in by scanning your finger with the fingerprint reader.Fingerprint readerFreeIPAHashing or crypto algorithm used for storing passwords of local usersHostname or ldap:// or ldaps:// URI pointing to the LDAP server.IPA R_ealm:IPA _Domain:IPA _Server:IPAv2IPAv2 SettingsIPAv2 domain join was not successful.IPAv2 domain join was not successful. The ipa-client-install command failed with the following error:IPAv2 passwordIf the home directory of an user doesn't exist yet it will be created automatically on his first login.IgnoreInvalid LDAP URI.Join DomainJoin SettingsJoining IPA DomainJoining Winbind DomainKDC:KerberosKerberos SettingsKerberos passwordLDAPLDAP Search _Base DN:LDAP SettingsLDAP _Server:LDAP authenticationLDAP passwordLocal accounts onlyLocal authorization is sufficientLockLow_ercaseNISNIS SettingsNIS _Domain:NIS _Server:NIS passwordNextNoO_ther charactersOkPass_word OptionsPasswordPassword:R_ealm:Realm:Require smart car_d for loginRestore the configuration files backed up before the previous configuration changeRevertSa_me Class:Save SettingsSecurity Model:Server:Smart card authentication allows you to log in using a certificate and key associated with a smart card.Some of the configuration changes you've made should be saved to disk before continuing. If you do not save them, then your attempt to join the domain may fail. Save changes?Te_mplate Shell:Template Shell:The %s file was not found, but it is required for %s support to work properly. Install the %s package, which provides this file.The passmaxclassrepeat option value is not an integerThe passmaxclassrepeat value must not be negativeThe passmaxrepeat option value is not an integerThe passmaxrepeat value must not be negativeThe passminclass option value is not an integerThe passminclass value must not be higher than 4The passminclass value must not be negativeThe passminlen minimum value is 6The passminlen option value is not an integerTo connect to a LDAP server with TLS protocol enabled you need a CA certificate which signed your server's certificate. Copy the certificate in the PEM format to the '%s' directory. Then press OK.To verify the LDAP server with TLS protocol enabled you need a CA certificate which signed the server's certificate. Please fill in the URL where the CA certificate in the PEM format can be downloaded from.Unable to initialize graphical environment. Most likely cause of failure is that the tool was not run using a graphical environment. Please either start your graphical user interface or set your DISPLAY variable. Unknown password hashing algorithm specified, using sha256.Use DNS to _locate KDCs for realmsUse DNS to locate KDCs for realmsUse DNS to resolve hosts to realmsUse D_NS to resolve hosts to realmsUse Fingerprint readerUse IPAv2Use KerberosUse LDAPUse LDAP AuthenticationUse MD5 PasswordsUse NISUse Shadow PasswordsUse TLSUse Transport Layer Security extension for LDAP as defined by RFC-2830. It must not be ticked with ldaps server URI.Use WinbindUse Winbind AuthenticationUse _TLS to encrypt connectionsUse the "Join Domain" button to join the IPAv2 domain.User InformationWarningWhen enabled /etc/security/access.conf will be consulted for authorization of users access.WinbindWinbind ADS R_ealm:Winbind Domain Co_ntrollers:Winbind SettingsWinbind _Domain:Winbind authenticationWinbind domain join was not successful.Winbind domain join was not successful. The net join command failed with the following error:Winbind passwordYesYou must provide ldaps:// server address or use TLS for LDAP authentication._Digits_Download CA Certificate..._Identity & Authentication_Join Domain..._KDCs:_Length:_Password Hashing Algorithm:_Password:_Same Character:_Security Model:_Uppercase_User Account Database:action to be taken on smart card removalauthenticate system accounts by local files onlyauthenticate system accounts by network servicesauthorize local users also through remote servicecachingcan only be run as rootcheck access.conf during account authorizationconfigures winbind to allow offline loginconfigures winbind to assume that users with no domain in their user names are domain usersconfigures winbind to assume that users with no domain in their user names are not domain usersconfigures winbind to prevent offline logincreate home directories for users on their first logindefault LDAP base DNdefault LDAP server hostname or URIdefault NIS domaindefault NIS serverdefault hesiod LHSdefault hesiod RHSdefault kerberos KDCdefault kerberos admin serverdefault kerberos realmdefault realm for samba and winbind when security=adsdefault smart card module to usedialog was cancelleddisable IPAv2 for user information and authentication by defaultdisable LDAP for authentication by defaultdisable LDAP for user information by defaultdisable MD5 passwords by defaultdisable NIS for user information by defaultdisable SSSD for authentication by default (still used for supported configurations)disable SSSD for user information by default (still used for supported configurations)disable account locking on too many consecutive authentication failuresdisable authentication with fingerprint readers by defaultdisable authentication with smart card by defaultdisable automatic per-user ecryptfsdisable caching of user credentials in SSSD by defaultdisable caching of user information by defaultdisable hesiod for user information by defaultdisable kerberos authentication by defaultdisable shadowed passwords by defaultdisable use of DNS to find kerberos KDCsdisable use of DNS to find kerberos realmsdisable use of RFC-2307bis schema for LDAP user information lookupsdisable use of TLS with LDAP (RFC-2830)disable winbind for authentication by defaultdisable winbind for user information by defaultdisable wins for hostname resolutiondisplay Back instead of Cancel in the main dialog of the TUIdo not check access.conf during account authorizationdo not create home directories for users on their first logindo not display the deprecated text user interfacedo not prefer dns over wins or nis for hostname resolutiondo not require digits in a passworddo not require lowercase characters in a passworddo not require other characters in a passworddo not require smart card for authentication by defaultdo not require uppercase characters in a passworddo not setup the NTP against the IPAv2 domaindo not start/stop portmap, ypbind, and nscddo not update the configuration files, only print new settingsenable IPAv2 for user information and authentication by defaultenable LDAP for authentication by defaultenable LDAP for user information by defaultenable MD5 passwords by defaultenable NIS for user information by defaultenable SSSD for authentication by default with manually managed configurationenable SSSD for user information by default with manually managed configurationenable account locking in case of too many consecutive authentication failuresenable authentication with fingerprint readers by defaultenable authentication with smart card by defaultenable automatic per-user ecryptfsenable caching of user credentials in SSSD by defaultenable caching of user information by default (automatically disabled when SSSD is used)enable hesiod for user information by defaultenable kerberos authentication by defaultenable shadowed passwords by defaultenable use of DNS to find kerberos KDCsenable use of DNS to find kerberos realmsenable use of RFC-2307bis schema for LDAP user information lookupsenable use of TLS with LDAP (RFC-2830)enable winbind for authentication by defaultenable winbind for user information by defaultenable wins for hostname resolutionhash/crypt algorithm for new passwordsjoin the IPAv2 domain as this accountjoin the winbind domain or ads realm now as this administratorload CA certificate from the URLlocal authorization is sufficient for local usersmaximum number of consecutive characters of same class in a passwordmaximum number of same consecutive characters in a passwordminimum length of a passwordminimum number of character classes in a passwordnames of servers to authenticate againstnever use SSSD implicitly even for supported configurationsopposite of --test, update configuration files with changed settingsprefer dns over wins or nis for hostname resolutionprobe network for defaults and print themrequire at least one digit in a passwordrequire at least one lowercase character in a passwordrequire at least one other character in a passwordrequire at least one uppercase character in a passwordrequire smart card for authentication by defaultrestore the backup of configuration filesrestore the backup of configuration files saved before the previous configuration changesave a backup of all configuration filessecurity mode to use for samba and winbindsetup the NTP against the IPAv2 domain (default)shadow passwordshow this help message and exitthe IPAv2 domain the system should be part ofthe character which will be used to separate the domain and user part of winbind-created user names if winbindusedefaultdomain is not enabledthe directory which winbind-created users will have as home directoriesthe pam_faillock module optionsthe realm for the IPAv2 domainthe server for the IPAv2 domainthe shell which winbind-created users will have as their login shelluid range winbind will assign to domain or ads usersunexpected argumentupdate all configuration filesusage: %s [options]use SSSD implicitly if it supports the configurationwinbind will use Kerberos 5 to authenticatewinbind will use the default authentication methodworkgroup authentication servers are inProject-Id-Version: PACKAGE VERSION Report-Msgid-Bugs-To: POT-Creation-Date: 2017-05-17 11:21+0200 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit PO-Revision-Date: 2017-05-22 02:15+0000 Last-Translator: kmoriguc Language-Team: Japanese (http://www.transifex.com/projects/p/authconfig/language/ja/) Language: ja Plural-Forms: nplurals=1; plural=0; X-Generator: Zanata 4.1.1 / 項目間ã®ç§»å‹• | é¸æŠž | 次ã®ç”»é¢*--enablerequiresmartcard ã¯ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ« 'sssd' ã§ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¦ãŠã‚‰ãšã€ã‚ªãƒ—ションã¯ç„¡è¦–ã•ã‚Œã¾ã™ã€‚èªè¨¼ã®è¨­å®šãƒ­ãƒ¼ã‚«ãƒ«èªè¨¼ã®ã‚ªãƒ—ション最大連続文字数最å°ãƒ‘スワードè¦ä»¶ä»–ã®èªè¨¼ã®ã‚ªãƒ—ション必è¦ãªæ–‡å­—クラススマートカードèªè¨¼ã®ã‚ªãƒ—ションユーザーアカウントã®èªè¨¼ãƒ’ント:スマートカードã¯ãƒ­ãƒ¼ã‚«ãƒ«ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ä¸­å¤®ç®¡ç†ã®ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã®ä¸¡æ–¹ã®ãƒ­ã‚°ã‚¤ãƒ³ã‚’サãƒãƒ¼ãƒˆã—ã¾ã™ã€‚ヒント: ã“れらã®ãƒã‚§ãƒƒã‚¯ã¯å€¤ãŒ0ãªã‚‰ã°ç„¡åŠ¹ã«ãªã‚Šã¾ã™ã€‚ヒント: ã“れ㯠/etc/security/access.conf を介ã—ã¦ç®¡ç†ã•ã‚Œã¾ã™ã€‚ADSレルム(Realm):管ç†ã‚µãƒ¼ãƒãƒ¼(_M):管ç†ã‚µãƒ¼ãƒãƒ¼:高度ãªã‚ªãƒ—ション(_O)警告å‰å›žã®èªè¨¼è¨­å®šå¤‰æ›´ã«ã‚ˆã‚Šä¿®æ­£ã•ã‚ŒãŸå…¨ã¦ã®è¨­å®šãƒ•ã‚¡ã‚¤ãƒ«ã¯ãƒãƒƒã‚¯ã‚¢ãƒƒãƒ—ã‹ã‚‰ä»¥å‰ã®è¨­å®šã«å¾©å…ƒã§ãã¾ã™ã€‚変更を戻ã—ã¾ã™ã‹ ?オフラインログインを許å¯(_L)èªè¨¼ã®æ–¹æ³•(_H):èªè¨¼èªè¨¼ã®è¨­å®šèªè¨¼ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ« %s/pam_%s.so ãŒã‚ã‚Šã¾ã›ã‚“。èªè¨¼ãƒ—ロセスãŒæ­£å¸¸ã«å‹•ä½œã—ãªã„ã‹ã‚‚知れã¾ã›ã‚“。戻るä¸æ­£ãªã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰å–り出ã—動作ãŒæŒ‡å®šã•ã‚Œã¾ã—ãŸã€‚ベースDN:文字クラス(_H):キャッシュ情報å–り消ã—カード削除ã®ã‚¢ã‚¯ã‚·ãƒ§ãƒ³(_M):証明書URL(_U):CA証明書をã¾ã ãƒ€ã‚¦ãƒ³ãƒ­ãƒ¼ãƒ‰ã—ã¦ã„ãªã„å ´åˆã‚„ã€ä»–ã®æ–¹æ³•ã§CA証明書を設定ã—ã¦ã„ãªã„å ´åˆã¯ã€ã“ã®ãƒœã‚¿ãƒ³ã‚’クリックã—ã¾ã™ã€‚ログインã—よã†ã¨ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’システムãŒç¢ºè¨¼ã™ã‚‹æ–¹æ³•ã‚’制御ã™ã‚‹åˆ©ç”¨è€…ã®æœ€åˆã®ãƒ­ã‚°ã‚¤ãƒ³æ™‚ã«ãƒ›ãƒ¼ãƒ ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã‚’作æˆã™ã‚‹(_H)NTP を設定ã—ãªã„(_N)ä¿å­˜ã—ãªã„(_N)ドメイン管ç†è€…:ドメインコントローラー:ドメイン管ç†è€…(_A):ドメイン:CA証明書をダウンロードã™ã‚‹æŒ‡ç´‹ãƒªãƒ¼ãƒ€ãƒ¼ã‚µãƒãƒ¼ãƒˆã‚’有効ã«ã™ã‚‹(_F)ローカルアクセス制御を有効ã«ã™ã‚‹(_L)スマートカードサãƒãƒ¼ãƒˆã‚’有効ã«ã™ã‚‹(_S)CA証明書ã®ãƒ€ã‚¦ãƒ³ãƒ­ãƒ¼ãƒ‰ã§ã‚¨ãƒ©ãƒ¼æŒ‡ç´‹èªè¨¼ã‚’使用ã™ã‚‹ã¨ã€æŒ‡ç´‹èª­ã¿å–ã‚Šã¨é–¢é€£ä»˜ã‘られãŸè‡ªåˆ†ã®æŒ‡ã®ã‚¹ã‚­ãƒ£ãƒ³ã§ãƒ­ã‚°ã‚¤ãƒ³ãŒå¯èƒ½ã«ãªã‚Šã¾ã™ã€‚指紋リーダーFreeIPAローカルユーザーã®ãƒ‘スワードä¿å­˜ã«ä½¿ç”¨ã™ã‚‹ãƒãƒƒã‚·ãƒ¥/æš—å·åŒ–アルゴリズムホストåã¾ãŸã¯ ldap:// ã¾ãŸã¯ ldaps:// ã®LDAPサーãƒãƒ¼ã‚’指定ã™ã‚‹URIIPA レルム(_E):IPA ドメイン(_D):IPA サーãƒãƒ¼(_S):IPAv2IPAv2 ã®è¨­å®šIPAv2 ドメインã®å‚加ã«å¤±æ•—ã—ã¾ã—ãŸã€‚IPAv2 ドメインã®å‚加ã«å¤±æ•—ã—ã¾ã—ãŸã€‚ipa-client-install コマンドã¯æ¬¡ã®ã‚¨ãƒ©ãƒ¼ã«ã‚ˆã‚Šå¤±æ•—ã—ã¾ã—ãŸ:IPAv2 パスワードユーザーã®ãƒ›ãƒ¼ãƒ ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ãŒãªã‘ã‚Œã°ã€æœ€åˆã®ãƒ­ã‚°ã‚¤ãƒ³æ™‚ã«è‡ªå‹•çš„ã«ä½œæˆã•ã‚Œã¾ã™ã€‚無視無効㪠LDAP URI ã§ã™ã€‚ドメインå‚加Join設定IPA ドメインã«å‚加Winbindドメインã«å‚加KDC:KerberosKerberos設定KerberosパスワードLDAPLDAP検索ベースDN(_B):LDAP設定LDAPサーãƒãƒ¼(_S):LDAP èªè¨¼LDAPパスワードローカルアカウント専用ローカルèªè¨¼ã§å分ロックå°æ–‡å­—(_E)NISNIS設定NISドメイン(_D):NISサーãƒãƒ¼(_S):NIS パスワード次ã„ã„ãˆä»–ã®æ–‡å­—(_T)OKパスワードオプション(_W)パスワードパスワード:レルム(_E):レルム(Realm):ログインã«ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã‚’å¿…è¦ã¨ã™ã‚‹(_D)å‰å›žã®è¨­å®šå¤‰æ›´ã®å‰ã«ãƒãƒƒã‚¯ã‚¢ãƒƒãƒ—ã•ã‚Œã¦ã„る設定ファイルを復元戻ã™åŒã˜ã‚¯ãƒ©ã‚¹(_M):設定ã®ä¿å­˜ã‚»ã‚­ãƒ¥ãƒªãƒ†ã‚£ãƒ¢ãƒ‡ãƒ«:サーãƒãƒ¼:スマートカードèªè¨¼ã‚’使用ã™ã‚‹ã¨ã€ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã¨é–¢é€£ä»˜ã‘られãŸè¨¼æ˜Žè¨¼åŠã³ã‚­ãƒ¼ã‚’使用ã—ãŸãƒ­ã‚°ã‚¤ãƒ³ãŒå¯èƒ½ã«ãªã‚Šã¾ã™ã€‚設定変更ã®å†…ã®å¹¾ã¤ã‹ã¯ã€ç¶™ç¶šã™ã‚‹å‰ã«ãƒ‡ã‚£ã‚¹ã‚¯ã«ä¿å­˜ã™ã‚‹å¿…è¦ãŒã‚ã‚Šã¾ã™ã€‚ 変更をä¿å­˜ã—ãªã„å ´åˆã€ãƒ‰ãƒ¡ã‚¤ãƒ³ã«å‚加ã™ã‚‹æ“作ãŒå¤±æ•—ã™ã‚‹ã“ã¨ãŒã‚ã‚Šã¾ã™ã€‚ 変更をä¿å­˜ã—ã¾ã™ã‹?テンプレートシェル(_M):テンプレートシェル:%s ファイルãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“ãŒã€ã“ã®ãƒ•ã‚¡ã‚¤ãƒ«ã¯ %s 用ã«æ­£ã—ã動作ã•ã›ã‚‹ã®ã‚’サãƒãƒ¼ãƒˆã™ã‚‹ãŸã‚å¿…è¦ã§ã™ã€‚ ã“ã®ãƒ•ã‚¡ã‚¤ãƒ«ã‚’æä¾›ã—ã¦ã„ã‚‹ %s パッケージをインストールã—ã¦ãã ã•ã„。passmaxclassrepeat オプションã®å€¤ãŒæ•´æ•°ã§ã¯ã‚ã‚Šã¾ã›ã‚“passmaxclassrepeat ã®å€¤ã‚’è² ã®æ•°ã«ã—ãªã„ã§ãã ã•ã„passmaxrepeat オプションã®å€¤ãŒæ•´æ•°ã§ã¯ã‚ã‚Šã¾ã›ã‚“passmaxrepeat ã®å€¤ã‚’è² ã®æ•°ã«ã—ãªã„ã§ãã ã•ã„passminclass オプションã®å€¤ãŒæ•´æ•°ã§ã¯ã‚ã‚Šã¾ã›ã‚“passminclass ã®å€¤ã¯ 4 以下ã«ã—ã¦ãã ã•ã„passminclass オプションã®å€¤ã¯è² ã®æ•°ã«ã—ãªã„ã§ãã ã•ã„passminlen ã®æœ€å°å€¤ã¯ 6 ã§ã™passminlen オプションã®å€¤ãŒæ•´æ•°ã§ã¯ã‚ã‚Šã¾ã›ã‚“LDAPサーãƒãƒ¼ã«TLSプロトコルを使ã£ã¦æŽ¥ç¶šã™ã‚‹ã«ã¯ã€ã‚ãªãŸã®ã‚µãƒ¼ãƒãƒ¼èªè¨¼ã®ç½²åãŒã‚ã‚‹CAèªè¨¼ãŒå¿…è¦ã§ã™ã€‚証明を'%s'ディレクトリã«PEMフォーマットã®èªè¨¼ã‚’コピーã—ã¦ãã ã•ã„。 ãã—ã¦OKを押ã—ã¾ã™ã€‚LDAP サーãƒãƒ¼ã« TLS プロトコルを使ã£ã¦æŽ¥ç¶šã™ã‚‹ã«ã¯ã€ã‚ãªãŸã®ã‚µãƒ¼ãƒãƒ¼èªè¨¼ã®ç½²åãŒã‚ã‚‹ CA èªè¨¼ãŒå¿…è¦ã§ã™ã€‚PEM フォーマット㮠CA èªè¨¼ã‚’ダウンロードã§ãã‚‹ URL を記入ã—ã¦ãã ã•ã„。グラフィカル環境をåˆæœŸåŒ–ã§ãã¾ã›ã‚“。最もå¯èƒ½æ€§ã®é«˜ã„原因ã¯ã€ã‚°ãƒ©ãƒ•ã‚£ã‚«ãƒ«ãƒ¢ãƒ¼ãƒ‰ã§èµ·å‹•ã•ã‚Œã¦ã„ãªã„ã“ã¨ã§ã™ã€‚GUIã‚’èµ·å‹•ã™ã‚‹ã‹ã€DISPLAY 値を設定ã—ã¦ãã ã•ã„。 ä¸æ˜Žãªãƒ‘スワードãƒãƒƒã‚·ãƒ¥ã‚¢ãƒ«ã‚´ãƒªã‚ºãƒ ãŒæŒ‡å®šã•ã‚ŒãŸã®ã§ã€sha256を使用ã—ã¾ã™ã€‚DNSを使用ã—ã¦ãƒ¬ãƒ«ãƒ ç”¨ã® KDC を見付ã‘ã‚‹(_I)DNSを使用ã—ã¦ãƒ¬ãƒ«ãƒ ç”¨ã®KDCを見付ã‘ã‚‹DNSを使用ã—ã¦ãƒ¬ãƒ«ãƒ ã®ãƒ›ã‚¹ãƒˆã‚’解決ã™ã‚‹DNSを使用ã—ã¦ãƒ¬ãƒ«ãƒ ã®ãƒ›ã‚¹ãƒˆã‚’解決ã™ã‚‹(_N)指紋リーダーを使用IPAv2 を使用Kerberos 5 を使用LDAP を使用LDAP èªè¨¼ã‚’使用MD5 パスワードを使用NIS を使用シャドウパスワードを使用TLS を使用RFC-2830ã§å®šç¾©ã•ã‚Œã¦ã„るよã†ã«LDAPã«TLS拡張を使用ã™ã‚‹ã€‚ ldapsサーãƒãƒ¼URIã§å°ã‚’付ã‘ã¦ã¯ã„ã‘ãªã„。Winbind を使用Winbind èªè¨¼ã‚’使用TLSを使用ã—ã¦æŽ¥ç¶šã‚’æš—å·åŒ–ã™ã‚‹(_T)IPAv2 ドメインã«å‚加ã™ã‚‹ã«ã¯ "ドメインå‚加" ボタンを使用ã—ã¾ã™ã€‚ユーザー情報警告有効ãªã‚‰ã°ã€/etc/security/access.conf ãŒãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚¢ã‚¯ã‚»ã‚¹ã®è¨±å¯ã®ãŸã‚ã«åˆ©ç”¨ã•ã‚Œã¾ã™ã€‚WinbindWinbind ADSレルム(_E)Winbindドメインコントローラ(_N):Winbind設定Winbindドメイン(_D):Winbind èªè¨¼Winbind ドメインã®å‚加ã«å¤±æ•—ã—ã¾ã—ãŸã€‚Winbind ドメインã®å‚加ã«å¤±æ•—ã—ã¾ã—ãŸã€‚net join コマンドã¯æ¬¡ã®ã‚¨ãƒ©ãƒ¼ã«ã‚ˆã‚Šå¤±æ•—ã—ã¾ã—ãŸ:Winbindパスワードã¯ã„ldaps:// サーãƒãƒ¼ã‚¢ãƒ‰ãƒ¬ã‚¹ã‚’記入ã™ã‚‹ã‹ã€ã¾ãŸã¯LDAPèªè¨¼ç”¨ã®TLSを使用ã—ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。数字(_D)CA証明書をダウンロードã™ã‚‹...(_D)識別ã¨èªè¨¼(_I)ドメインã¸å‚加...(_J)KDCs(_K):é•·ã•(_L):パスワードãƒãƒƒã‚·ãƒ¥ã‚¢ãƒ«ã‚´ãƒªã‚ºãƒ (_P):パスワード(_P):åŒã˜æ–‡å­—(_S):セキュリティモデル(_S):大文字(_U)ユーザーアカウントデータベース(_U):スマートカードã®å–り出ã—時ã«è¡Œã†å‹•ä½œãƒ­ãƒ¼ã‚«ãƒ«ãƒ•ã‚¡ã‚¤ãƒ«ã ã‘ã«ã‚ˆã‚‹èªè¨¼ã‚·ã‚¹ãƒ†ãƒ ã‚¢ã‚«ã‚¦ãƒ³ãƒˆãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã‚µãƒ¼ãƒ“スã«ã‚ˆã‚‹èªè¨¼ã‚·ã‚¹ãƒ†ãƒ ã‚¢ã‚«ã‚¦ãƒ³ãƒˆãƒªãƒ¢ãƒ¼ãƒˆã‚µãƒ¼ãƒ“スを通ã—ã¦ã®ãƒ­ãƒ¼ã‚«ãƒ«ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’èªè¨¼ã‚­ãƒ£ãƒƒã‚·ãƒ¥åŒ–root ã¨ã—ã¦ã®ã¿å®Ÿè¡Œå¯èƒ½ã‚¢ã‚«ã‚¦ãƒ³ãƒˆèªè¨¼ä¸­ã« access.conf ã‚’ãƒã‚§ãƒƒã‚¯ã™ã‚‹ã‚ªãƒ•ãƒ©ã‚¤ãƒ³ã§ãƒ­ã‚°ã‚¤ãƒ³ã§ãるよã†ã«winbindを設定ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼åã«ãƒ‰ãƒ¡ã‚¤ãƒ³ãŒãªã„ユーザーã¯ãƒ‰ãƒ¡ã‚¤ãƒ³ãƒ¦ãƒ¼ã‚¶ãƒ¼ã¨ã¿ãªã™ã‚ˆã†winbindを設定ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼åã«ãƒ‰ãƒ¡ã‚¤ãƒ³ãŒãªã„ユーザーã¯ãƒ‰ãƒ¡ã‚¤ãƒ³ãƒ¦ãƒ¼ã‚¶ãƒ¼ã§ã¯ãªã„ã¨ã¿ãªã™ã‚ˆã†winbindを設定ã™ã‚‹ã‚ªãƒ•ãƒ©ã‚¤ãƒ³ã§ãƒ­ã‚°ã‚¤ãƒ³ã§ããªã„よã†ã«winbindを設定ã™ã‚‹åˆ©ç”¨è€…ã®æœ€åˆã®ãƒ­ã‚°ã‚¤ãƒ³æ™‚ã«ãƒ›ãƒ¼ãƒ ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã‚’作æˆã™ã‚‹ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®LDAPベースDNデフォルトã®LDAPサーãƒãƒ¼ãƒ›ã‚¹ãƒˆåã¾ãŸã¯URIデフォルトã®NISドメインデフォルトã®NISサーãƒãƒ¼ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã® hesiod LHSデフォルト㮠hesiod RHSデフォルトã®Kerberos KDCデフォルトã®Kerberos管ç†ã‚µãƒ¼ãƒãƒ¼ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®Kerberosレルムsecurity=adsã®æ™‚ã®Sambaã¨winbind用ã®ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®ãƒ¬ãƒ«ãƒ (realm)デフォルトã§ä½¿ç”¨ã™ã‚‹ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ«ãƒ€ã‚¤ã‚¢ãƒ­ã‚°ã¯ã‚­ãƒ£ãƒ³ã‚»ãƒ«ã•ã‚Œã¾ã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã®æ¤œç´¢ãŠã‚ˆã³èªè¨¼ã«IPAv2をデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹LDAPèªè¨¼ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦LDAPをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹MD5パスワードをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦NISをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹èªè¨¼ç”¨ã®SSSDã¯ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã§ã¯ç„¡åŠ¹ã§ã™ (設定ã¯ç¾åœ¨ã‚‚サãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ã¾ã™)ユーザー情報ã«é–¢ã—㦠SSSD をデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ã€‚(ã¾ã ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ãªã„設定ã§ã™)èªè¨¼ã‚’続ã‘ã¦å¤±æ•—ã—ãŸå ´åˆã®ã‚¢ã‚«ã‚¦ãƒ³ãƒˆãƒ­ãƒƒã‚¯ã‚’無効ã«ã™ã‚‹æŒ‡ç´‹ãƒªãƒ¼ãƒ€ãƒ¼ã«ã‚ˆã‚‹èªè¨¼ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã«ã‚ˆã‚‹èªè¨¼ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æ¯Žã®è‡ªå‹•ecryptfsを無効ã«ã™ã‚‹SSSD 内ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼ä¿¡ä»»æƒ…å ±ã®ã‚­ãƒ£ãƒƒã‚·ãƒ¥ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã®ã‚­ãƒ£ãƒƒã‚·ãƒ¥ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦hesiodをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹Kerberosèªè¨¼ã‚’デフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ã‚·ãƒ£ãƒ‰ã‚¦ãƒ‘スワードをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹kerberos KDCã®æ¤œç´¢æ™‚ã«DNSを使用ã§ããªã„よã†ã«ã™ã‚‹Kerberosレルムã®æ¤œç´¢æ™‚ã«DNSを使用ã§ããªã„よã†ã«ã™ã‚‹ LDAPユーザー情報ã®æ¤œç´¢ã«RFC-2307 bisスキーマを使用ä¸å¯ã«ã™ã‚‹TLSã¨LDAPã®ä½µç”¨ã‚’無効ã«ã™ã‚‹(RFC-2830)èªè¨¼ã§ winbind をデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦winbindをデフォルトã§ç„¡åŠ¹ã«ã™ã‚‹ãƒ›ã‚¹ãƒˆå解決用ã®winsを無効ã«ã™ã‚‹ãƒ†ã‚­ã‚¹ãƒˆ UI ã®ãƒ¡ã‚¤ãƒ³ãƒ€ã‚¤ã‚¢ãƒ­ã‚°ã®ä¸­ã«ã€Œã‚­ãƒ£ãƒ³ã‚»ãƒ«ã€ã®ä»£ã‚ã‚Šã«ã€Œæˆ»ã‚‹ã€ã‚’表示ã™ã‚‹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆèªè¨¼ä¸­ã« access.conf ã‚’ãƒã‚§ãƒƒã‚¯ã—ãªã„利用者ã®æœ€åˆã®ãƒ­ã‚°ã‚¤ãƒ³æ™‚ã«ãƒ›ãƒ¼ãƒ ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã‚’作æˆã—ãªã„ä¸é©åˆ‡ãªãƒ†ã‚­ã‚¹ãƒˆãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚¤ãƒ³ã‚¿ãƒ•ã‚§ãƒ¼ã‚¹ã‚’表示ã—ãªã„ホストå解決ã«winsã¾ãŸã¯nisよりdnsを優先ã—ãªã„パスワードã«æ•°å­—ã‚’å¿…è¦ã¨ã—ãªã„パスワードã«å°æ–‡å­—ã‚’å¿…è¦ã¨ã—ãªã„パスワードã«è¨˜å·ã‚’å¿…è¦ã¨ã—ãªã„èªè¨¼ç”¨ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã‚’デフォルトã§è¦æ±‚ã—ãªã„パスワードã«å¤§æ–‡å­—ã‚’å¿…è¦ã¨ã—ãªã„IPAv2 ドメインã«å¯¾ã—㦠NTP をセットアップã—ã¾ã›ã‚“portmapã€ypbindã€nscd ã‚’èµ·å‹•/åœæ­¢ã—ãªã„設定ファイルをアップデートã›ãšã«ã€æ–°ã—ã„設定をãŸã è¡¨ç¤ºã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã®æ¤œç´¢ãŠã‚ˆã³èªè¨¼ã«IPAv2をデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹LDAPèªè¨¼ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦LDAPをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹MD5パスワードをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦NISをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹èªè¨¼ã® SSSD をデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ã€‚(手動管ç†ã®è¨­å®šã¨ä¸€ç·’ã«)ユーザー情報ã«é–¢ã—㦠SSSD をデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ã€‚(手動管ç†ã®è¨­å®šã¨ä¸€ç·’ã«)èªè¨¼ã‚’続ã‘ã¦å¤±æ•—ã—ãŸå ´åˆã®ã«ã‚¢ã‚«ã‚¦ãƒ³ãƒˆãƒ­ãƒƒã‚¯ã‚’有効ã«ã™ã‚‹æŒ‡ç´‹ãƒªãƒ¼ãƒ€ãƒ¼ã«ã‚ˆã‚‹èªè¨¼ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã«ã‚ˆã‚‹èªè¨¼ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æ¯Žã®è‡ªå‹•ecryptfsを有効ã«ã™ã‚‹SSSD 内ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼ä¿¡ä»»æƒ…å ±ã®ã‚­ãƒ£ãƒƒã‚·ãƒ¥ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã®ã‚­ãƒ£ãƒƒã‚·ãƒ¥ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ï¼ˆSSSD ãŒä½¿ç”¨ã•ã‚Œã‚‹æ™‚ã«è‡ªå‹•çš„ã«ç„¡åŠ¹ã«ã™ã‚‹ï¼‰ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦hesiodをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹Kerberosèªè¨¼ã‚’デフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ã‚·ãƒ£ãƒ‰ã‚¦ãƒ‘スワードをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹kerberos KDCã®æ¤œç´¢æ™‚ã«DNSを使用ã§ãるよã†ã«ã™ã‚‹kerberosレルムã®æ¤œç´¢æ™‚ã«DNSを使用ã§ãるよã†ã«ã™ã‚‹LDAPユーザー情報ã®æ¤œç´¢ã«RFC-2307 bisスキーマを使用å¯èƒ½ã«ã™ã‚‹TLSã¨LDAPã®ä½µç”¨ã‚’有効ã«ã™ã‚‹(RFC-2830)èªè¨¼ã§winbindをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼æƒ…å ±ã«é–¢ã—ã¦winbindをデフォルトã§æœ‰åŠ¹ã«ã™ã‚‹ãƒ›ã‚¹ãƒˆå解決用ã®winsを有効ã«ã™ã‚‹æ–°ã—ã„パスワードã®ãƒãƒƒã‚·ãƒ¥/æš—å·åŒ–アルゴリズムã“ã®ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã§ IPAv2 ドメインã«å‚加管ç†è€…ã¨ã—ã¦winbindドメインã‹ã¾ãŸã¯ADSレルムã«å‚加ã™ã‚‹URLã‹ã‚‰CA証明書をロードã™ã‚‹ãƒ­ãƒ¼ã‚«ãƒ«èªè¨¼ã¯ãƒ­ãƒ¼ã‚«ãƒ«ãƒ¦ãƒ¼ã‚¶ãƒ¼ç”¨ã¨ã—ã¦å•é¡Œã‚ã‚Šã¾ã›ã‚“パスワードã«ãŠã‘ã‚‹åŒã˜æ–‡å­—クラスã®æ–‡å­—ã®æœ€å¤§é€£ç¶šæ•°ãƒ‘スワードã«ãŠã‘ã‚‹åŒã˜æ–‡å­—ã®æœ€å¤§é€£ç¶šæ•°ãƒ‘スワードã®æœ€å°æ•°ãƒ‘スワードã®æ–‡å­—クラスã®æœ€å°æ•°èªè¨¼ã™ã‚‹å¯¾è±¡ã®ã‚µãƒ¼ãƒãƒ¼åã‚‚ã—サãƒãƒ¼ãƒˆã•ã‚Œã¦ã„る設定ã§ã‚ã£ã¦ã‚‚ã€æš—é»™ã®ã†ã¡ã«SSSDを利用ã—ãªã„ã§ãã ã•ã„。--test ã®å対ã€å¤‰æ›´ã•ã‚ŒãŸè¨­å®šã«å¯¾ã™ã‚‹è¨­å®šãƒ•ã‚¡ã‚¤ãƒ«ã®ã‚¢ãƒƒãƒ—デートホストå解決ã«winsã¾ãŸã¯nisよりdnsを優先ã™ã‚‹ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã‚’検出ã—ã¦è¡¨ç¤ºã™ã‚‹ãƒ‘スワードã«å°‘ãªãã¨ã‚‚1文字ã®æ•°å­—ã‚’å¿…è¦ã¨ã™ã‚‹ãƒ‘スワードã«å°‘ãªãã¨ã‚‚1文字ã®å°æ–‡å­—ã‚’å¿…è¦ã¨ã™ã‚‹ãƒ‘スワードã«å°‘ãªãã¨ã‚‚1文字ã®è¨˜å·ã‚’å¿…è¦ã¨ã™ã‚‹ãƒ‘スワードã«å°‘ãªãã¨ã‚‚1文字ã®å¤§æ–‡å­—ã‚’å¿…è¦ã¨ã™ã‚‹èªè¨¼ç”¨ã‚¹ãƒžãƒ¼ãƒˆã‚«ãƒ¼ãƒ‰ã‚’デフォルトã§è¦æ±‚ã™ã‚‹è¨­å®šãƒ•ã‚¡ã‚¤ãƒ«ã®ãƒãƒƒã‚¯ã‚¢ãƒƒãƒ—を復元å‰å›žã®è¨­å®šå¤‰æ›´ã®å‰ã«ä¿å­˜ã•ã‚Œã¦ã„る設定ファイルã®ãƒãƒƒã‚¯ã‚¢ãƒƒãƒ—を復元全ã¦ã®è¨­å®šãƒ•ã‚¡ã‚¤ãƒ«ã®ãƒãƒƒã‚¯ã‚¢ãƒƒãƒ—ã‚’ä¿å­˜samba 㨠winbind 用ã«ä½¿ç”¨ã™ã‚‹ã‚»ã‚­ãƒ¥ãƒªãƒ†ã‚£ãƒ¢ãƒ¼ãƒ‰IPAv2 ドメインã«å¯¾ã—㦠NTP をセットアップã—ã¾ã™ï¼ˆãƒ‡ãƒ•ã‚©ãƒ«ãƒˆï¼‰ã‚·ãƒ£ãƒ‰ã‚¦ãƒ‘スワードã“ã®ãƒ˜ãƒ«ãƒ—メッセージを表示ã—ã¦çµ‚了システムをå‚加ã•ã›ã‚‹IPAv2ドメインwinbindusedefaultdomainãŒæœ‰åŠ¹ã«ãªã£ã¦ã„ãªã„å ´åˆã€winbindã§ä½œæˆã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼åã®ãƒ‰ãƒ¡ã‚¤ãƒ³éƒ¨åˆ†ã¨ãƒ¦ãƒ¼ã‚¶ãƒ¼éƒ¨åˆ†ã‚’区別ã™ã‚‹ãŸã‚ã«ä½¿ç”¨ã™ã‚‹æ–‡å­—winbindã§ä½œæˆã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼ã«ãƒ›ãƒ¼ãƒ ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã¨ã—ã¦æŒãŸã›ã‚‹ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã‚’指定ã™ã‚‹pam_faillock モジュールオプションIPAv2ドメインã®ãƒ¬ãƒ«ãƒ IPAv2 ドメインã®ã‚µãƒ¼ãƒãƒ¼winbindã§ä½œæˆã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼ã®ãƒ­ã‚°ã‚¤ãƒ³ã‚·ã‚§ãƒ«ã¨ã—ã¦æŒãŸã›ã‚‹ã‚·ã‚§ãƒ«ã‚’指定ã™ã‚‹winbindãŒdomainã¾ãŸã¯adsユーザーã«å‰²ã‚Šå½“ã¦ã‚‹uidã®ç¯„囲予期ã—ãªã„引数ã™ã¹ã¦ã®è¨­å®šãƒ•ã‚¡ã‚¤ãƒ«ã®ã‚¢ãƒƒãƒ—デート使用方法: %s [オプション]ã‚‚ã—サãƒãƒ¼ãƒˆã•ã‚Œã¦ã„る設定ã§ã‚ã‚Œã°ã€æš—é»™ã®ã†ã¡ã«SSSDを利用ã™ã‚‹ã€‚èªè¨¼æ™‚ã«winbindã«Kerberos 5を使用ã•ã›ã‚‹winbindã«ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®èªè¨¼æ–¹æ³•ã‚’使用ã•ã›ã‚‹ãƒ¯ãƒ¼ã‚¯ã‚°ãƒ«ãƒ¼ãƒ—èªè¨¼ã‚µãƒ¼ãƒãƒ¼