https://bugzilla.redhat.com/show_bug.cgi?id=861467 (Red Hat Certificate System)
Description of problem: Directory authenticated user certificate enrollments fail when anonymous access disabled. Version-Release number of selected component (if applicable): pki-ca-8.1.1-1.el5pki How reproducible: Steps to Reproduce: 1.Enroll a directory authenticated user certificate from CA EE page. 2. 3. Actual results: Enrollment fail. LDAP access log has this: [28/Sep/2012:17:37:30 -0700] conn=1850 op=0 UNPROCESSED OPERATION - Anonymous access not allowed [28/Sep/2012:17:37:30 -0700] conn=1850 op=0 RESULT err=48 tag=101 nentries=0 etime=0 [28/Sep/2012:17:37:30 -0700] conn=1850 op=1 UNBIND [28/Sep/2012:17:37:30 -0700] conn=1850 op=1 fd=134 closed - U1 Expected results: Certificate enrollment should suceed. Additional info:
Fixed in the patch - 81fd42a1383272fed855e033b533d887d8f5de05
A new plugin is added to handle cases that does not contain an anonymous search and also takes a LDAP CN for enrolling certs.
Metadata Update from @nkinder: - Issue assigned to kaskahn - Issue set to the milestone: 10.2 - 11/13 (November)
Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.
This issue has been cloned to GitHub and is available here: https://github.com/dogtagpki/pki/issues/919
If you want to receive further updates on the issue, please navigate to the GitHub issue and click on Subscribe button.
Subscribe
Thank you for understanding, and we apologize for any inconvenience.
Login to comment on this ticket.