#47887 DS Console does not correctly disable SSL
Closed: wontfix None Opened 6 years ago by mreynolds.

Steps to reproduce:

This assumes the server already installed with SSL enabled, and the audit log enabled.

[1] Open the console -> DS console
[2] Go to the configuration tab
[3] The top node(machine name) should automatically be selected
[4] Click on the encryption tab
[5] Uncheck "Use SSL in this server"

The audit log shows that nsServerSecurity is being set to "on" when it should really be "off"

...
...
time: 20140903154906
dn: cn=config
changetype: modify
replace: nsslapd-security
nsslapd-security: off
-
replace: nsslapd-ssl-check-hostname
nsslapd-ssl-check-hostname: off
-
replace: modifiersname
modifiersname: cn=dm
-
replace: modifytimestamp
modifytimestamp: 20140903194906Z
-

time: 20140903154906
dn: cn=slapd-localhost,cn=389 Directory Server,cn=Server Group,cn=localhost.localdomain,ou=example.com,o=NetscapeRoot
changetype: modify
replace: nsServerSecurity
nsServerSecurity: on
-
...
...

To ssh://git.fedorahosted.org/git/389/ds-console.git
cbd0dc9..1c02856 master -> master

commit 1c02856f5f4e547f0d0347625bdaf6aa323cc343
Author: Mark Reynolds mreynolds@redhat.com
Date: Wed Sep 3 17:03:22 2014 -0400

Metadata Update from @mreynolds:
- Issue assigned to mreynolds
- Issue set to the milestone: 389-admin,console 1.1.36

3 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/1218

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: Fixed)

2 months ago

Login to comment on this ticket.

Metadata