freeipa

Clone
Source Code
GIT

a9fe37e ipa-ldap-updater: make possible to use LDAPI with autobind in case of hardened LDAP configuration

2 files Authored by abbra 9 years ago, Committed by mkosek 9 years ago,
raw patch tree parent
2 files changed. 6 lines added. 1 lines removed.
ipapython/ipaldap.py
file modified
+4 -0
ipaserver/install/ipa_ldap_updater.py
file modified
+2 -1 
    ipa-ldap-updater: make possible to use LDAPI with autobind in case of hardened LDAP configuration
    
    When nsslapd-minssf is greater than 0, running as root
      ipa-ldap-updater [-l]
    will fail even if we force use of autobind for root over LDAPI.
    
    The reason for this is that schema updater doesn't get ldapi flag passed and
    attempts to connect to LDAP port instead and for hardened configurations
    using simple bind over LDAP is not enough.
    
    Additionally, report properly previously unhandled LDAP exceptions.
    https://fedorahosted.org/freeipa/ticket/3468
    
    Reviewed-By: Petr Spacek <pspacek@redhat.com>
file modified
+4 -0
file modified
+2 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.