freeipa

FreeIPA is an integrated Identity and Authentication solution for Linux/UNIX networked environments.  |  http://www.freeipa.org/

#5055 DNS Administrators cannot search in zones

Created 3 years ago by mbasti
Modified a year ago

Search filter contains attributes which are not allowed by ACI:
hiprecord, spfrecord, tkeyrecord, tarecord, dhcidrecord, sigrecord, aplrecord, nsec3record, rprecord, dnskeyrecord

This prevent users with 'DNS Administrator' privilege to search zones.

How to reproduce:

kinit user

ipa zone-find test
<0 result returned>

kinit admin
ipa zone-find test
<results>

Related ticket: #4934

master:

  • 5ea41ab DNS: Consolidate DNS RR types in API and schema

ipa-4-2:

  • bb64985 DNS: Consolidate DNS RR types in API and schema
a year ago

Metadata Update from @mbasti:
- Issue assigned to mbasti
- Issue set to the milestone: FreeIPA 4.2.1

Login to comment on this ticket.

defect

DNS

1

https://bugzilla.redhat.com/show_bug.cgi?id=1246141

cancel