#50726 Issue 50711 - `dsconf security` lacks option for setting nsTLSAllowClientRenegotiation attribute
Closed 2 years ago by spichugi. Opened 2 years ago by mhonek.

@@ -30,6 +30,9 @@ 

      ('tls-client-auth', Props(Encryption, 'nsSSLClientAuth',

                                'Client authentication requirement',

                                ('off', 'allowed', 'required'))),

+     ('tls-client-renegotiation', Props(Encryption, 'nsTLSAllowClientRenegotiation',

+                                        'Allow client TLS renegotiation',

+                                        onoff)),

      ('require-secure-authentication', Props(Config, 'nsslapd-require-secure-binds',

                                              'Require binds over LDAPS, StartTLS, or SASL',


Bug Description:
dsconf security is not able to handle nsTLSAllowClientRenegotiation attribute.

Fix Description:
Add the respective option for dsconf.

Fixes https://pagure.io/389-ds-base/issue/50711

Author: Matus Honek mhonek@redhat.com

Review by: ???

rebased onto 7b1144e

2 years ago

Pull-Request has been merged by mhonek

2 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This pull request has been cloned to Github as issue and is available here:
- https://github.com/389ds/389-ds-base/issues/3781

If you want to continue to work on the PR, please navigate to the github issue,
download the patch from the attachments and file a new pull request.

Thank you for understanding. We apologize for all inconvenience.

Pull-Request has been closed by spichugi

2 years ago