Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 6): Bug 1191040
Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.
Description of problem: Customer requires "nsslapd-minssf" to be in set as 1 in directory server for successful authentication. Where as ipa-client-automount command requires the values to be "0". Due to which the command is failing with error. ------------------------------------------------------------------------------- Check if naming context 'dc=example,dc=com' is for IPA LDAP server returned UNWILLING_TO_PERFORM. This likely means that minssf is enabled Unable to confirm that idm.example.com is an IPA server ------------------------------------------------------------------------------- Steps to Reproduce: 1. In IPA Server set "nsslapd-minssf: 1" and configure automount 2. In IPA client, try configuring automount using command "ipa-client-automount"
IMO, there are 2 parts of the fix:
4.1.3 was released.
Fixed upstream master: https://fedorahosted.org/freeipa/changeset/aa745b31d3762121bb0df1432cb2a48d1d15fd2a ipa-4-1: https://fedorahosted.org/freeipa/changeset/0344f246c294d5dcdf19ec4dd851de48a55e6274
better note:
master:
ipa-4-1:
Metadata Update from @mkosek: - Issue assigned to dkupka - Issue set to the milestone: FreeIPA 4.1.4
Login to comment on this ticket.