After changing an attribute of an otp token, it generates a new unique id for it. It is not a good idea IMO to change any primary key.
[amisnyov@vm-036 freeipa-master]$ ipa otptoken-mod fdf2f268-066b-4613-a2ff-6eb357f1e2ab --owner=ifudhiufda --------------------------------------------------------- Modified OTP token "fdf2f268-066b-4613-a2ff-6eb357f1e2ab" --------------------------------------------------------- Unique ID: e79a94b6-f269-4e70-9a04-3ceb44d22ef0 Description: fga Owner: ifudhiufda Disabled state: FALSE Validity start: 20130101000000Z Validity end: 20120101000000Z Vendor: FreeIPA Model: totp [amisnyov@vm-036 freeipa-master]$ ipa otptoken-show fdf2f268-066b-4613-a2ff-6eb357f1e2ab ipa: ERROR: fdf2f268-066b-4613-a2ff-6eb357f1e2ab: OTP token not found
This ticket is not complete yet, moving to next month milestone.
Is this still happening for you?
I am not able to reproduce this:
$ ipa user-find --whoami -------------- 1 user matched -------------- User login: admin Last name: Administrator Home directory: /home/admin Login shell: /bin/bash UID: 1851800000 GID: 1851800000 Account disabled: False Password: True Kerberos keys available: True ---------------------------- Number of entries returned 1 ---------------------------- $ ipa otptoken-add ------------------ Added OTP token "" ------------------ Unique ID: 0225e64b-a487-424e-afd9-efaa825b49a0 Owner: admin Vendor: FreeIPA Model: totp Serial: 0225e64b-a487-424e-afd9-efaa825b49a0 URI: otpauth://totp/admin@EXAMPLE.COM:0225e64b-a487-424e-afd9-efaa825b49a0?digits=6&secret=VONNZ3IXXGK2MSX4&period=30&algorithm=sha1&issuer=admin%40EXAMPLE.COM $ ipa otptoken-mod 0225e64b-a487-424e-afd9-efaa825b49a0 --owner=ifudhiufda --------------------------------------------------------- Modified OTP token "0225e64b-a487-424e-afd9-efaa825b49a0" --------------------------------------------------------- Unique ID: 0225e64b-a487-424e-afd9-efaa825b49a0 Owner: ifudhiufda Vendor: FreeIPA Model: totp Serial: 0225e64b-a487-424e-afd9-efaa825b49a0 $ ipa otptoken-show 0225e64b-a487-424e-afd9-efaa825b49a0 Unique ID: 0225e64b-a487-424e-afd9-efaa825b49a0 Owner: ifudhiufda Vendor: FreeIPA Model: totp Serial: 0225e64b-a487-424e-afd9-efaa825b49a0
I was able to reproduce and fix it. Here is the patch:
http://www.redhat.com/archives/freeipa-devel/2014-May/msg00075.html
Starting review
master
Metadata Update from @amisnyov: - Issue assigned to npmccallum - Issue set to the milestone: FreeIPA 4.0 - 2014/04
Log in to comment on this ticket.