#5177 Add ACI and permission for managing user userCertificate attribute
Closed: Fixed None by ftweedal. Opened 3 years ago by ftweedal.

"certificate issuer" roles will need write access to users'
userCertificate attribute, so it should be possible to assign
this permission to a role. Currently there is only a "Modify Users"
permission that allows all attributes to be written.

Note that a similar permission already exists for hosts:
"System: Manage Host Certificates"


master:

  • 6b978d7 add permission: System: Manage User Certificates

ipa-4-2:

  • 7a50998 add permission: System: Manage User Certificates

Metadata Update from @ftweedal:
- Issue assigned to pvoborni
- Issue set to the milestone: FreeIPA 4.2.1

2 years ago

Login to comment on this ticket.

Metadata