https://bugzilla.redhat.com/show_bug.cgi?id=532811
I checked the original (quite old) bug and its still a problem in IPA 2.x. User name is put to lowercase, but its principal is not:
# ipa user-add --first=Foo --last=Bar FbAr ----------------- Added user "fbar" ----------------- User login: fbar First name: Foo Last name: Bar Full name: Foo Bar Display name: Foo Bar Initials: FB Home directory: /home/fbar GECOS field: Foo Bar Login shell: /bin/sh Kerberos principal: FbAr@IDM.LAB.BOS.REDHAT.COM UID: 1069400003 GID: 1069400003 Keytab: False Password: False # ipa passwd fbar Password: Enter Password again to verify: ipa: ERROR: no such entry # kinit fbar kinit: Client 'fbar@IDM.LAB.BOS.REDHAT.COM' not found in Kerberos database while getting initial credentials
There seems to be a disconnect between the description of this ticket and the bug...
In this, I thought that creating a new plugin in this phase is not what we want and that fixing principal normalization covers the BZ cause. If you thikn this is not enough, I can change the ticket scope and copy original BZ description.
attachment freeipa-rcrit-876-principal.patch
master: a1430dc[[BR]] ipa-2-1: fb6abb2
Metadata Update from @mkosek: - Issue assigned to rcritten - Issue set to the milestone: FreeIPA 2.1.2 (bug fixing)
Login to comment on this ticket.