Learn more about these different git repos.
Other Git URLs
I have configured FreeIPA with two-factor authentication and set up SSSD to try FAST. SSSD runs on IPA master itself:
krb5_use_fast = try
krb5_fast_principal = host/master.ipa.test
When trying to login through SSH to the master.ipa.test, I've entered OTP key and in SSSD logs I can see that SSSD krb5 child did negotiate FAST, obtained the ticket for the user and finally stored it in the keyring ccache. However, SSSD's domain child did receive a response back that it didn't understand, therefore, full logon failed.
Patch sent for review: https://lists.fedorahosted.org/pipermail/sssd-devel/2013-December/017896.html
patch: 0 => 1
milestone: NEEDS_TRIAGE => SSSD 1.11.4
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1051016
rhbz: => [https://bugzilla.redhat.com/show_bug.cgi?id=1051016 1051016]
resolution: => fixed
status: new => closed
changelog: => Helps enable the use of OTP with an IPA server.
Metadata Update from @abbra:
- Issue set to the milestone: SSSD 1.11.4
to comment on this ticket.