freeipa

Clone
Source Code
GIT

9137ff4 Allow admins to disable preauth for SPNs.

6 files Authored by simo 8 years ago, Committed by mbasti 8 years ago,
raw patch tree parent
6 files changed. 32 lines added. 10 lines removed.
API.txt
file modified
+1 -1
VERSION
file modified
+2 -2
daemons/ipa-kdb/ipa_kdb.c
file modified
+5 -4
daemons/ipa-kdb/ipa_kdb.h
file modified
+1 -0
daemons/ipa-kdb/ipa_kdb_principals.c
file modified
+21 -2
ipalib/plugins/config.py
file modified
+2 -1 
    Allow admins to disable preauth for SPNs.
    
    Some legacy softare is not able to properly cope with preauthentication,
    allow the admins to disable the requirement to use preauthentication for
    all Service Principal Names if they so desire. IPA Users are excluded,
    for users, which use password of lessere entrpy, preauthentication is
    always required by default.
    
    This setting does NOT override explicit policies set on service principals
    or in the global policy, it only affects the default.
    
    Signed-off-by: Simo Sorce <simo@redhat.com>
    
    Ticket: https://fedorahosted.org/freeipa/ticket/3860
    Reviewed-By: Martin Babinsky <mbabinsk@redhat.com>
file modified
+1 -1
file modified
+2 -2
file modified
+5 -4
file modified
+1 -0
file modified
+21 -2
file modified
+2 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.