Issue #4725: Prefer TCP Kerberos on clients - freeipa

freeipa

#4725 Prefer TCP Kerberos on clients

Closed: Fixed None Opened 9 years ago by npmccallum.

TCP is overall a better fit for IPA. But with OTP using UDP is likely to cause timeouts, spurious failures and lockouts. FreeIPA should default to using TCP first and fall back to using UDP.

dpal commented 9 years ago

Yes, ipa-client-install should update krb5.conf on the client to prefer TCP.

npmccallum commented 9 years ago

https://www.redhat.com/archives/freeipa-devel/2014-November/msg00098.html

mkosek commented 9 years ago

Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=919228 (Red Hat Enterprise Linux 7)

mkosek commented 9 years ago

4.1.2 was released.

mkosek commented 9 years ago

The original closed SSSD ticket that started this effort: https://fedorahosted.org/sssd/ticket/914

mkosek commented 9 years ago

master:

7ad9f5d Prefer TCP connections to UDP in krb5 clients

ipa-4-1:

d73ed48 Prefer TCP connections to UDP in krb5 clients

Metadata Update from @npmccallum:
- Issue assigned to npmccallum
- Issue set to the milestone: FreeIPA 4.1.3

7 years ago

Metadata

Assignee

npmccallum

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.1.3

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

OTP

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=919228, https://bugzilla.redhat.com/show_bug.cgi?id=1161722

tester

None

changelog

None

design

None

freeipa

Source Code

#4725 Prefer TCP Kerberos on clients Closed: Fixed None Opened 9 years ago by npmccallum.

Metadata

#4725 Prefer TCP Kerberos on clients

Closed: Fixed None Opened 9 years ago by npmccallum.