Issue #5488: During replica promotion /etc/openldap/ldap.conf is updated with the master URI - freeipa

freeipa

#5488 During replica promotion /etc/openldap/ldap.conf is updated with the master URI

Closed: Fixed None Opened 8 years ago by tbordaz.

During replica promotion, configure_openldap_conf updates /etc/openldap/ldap.conf.
It adds something like:

URI ldaps://<master-fqdn>
BASE <suffix>
TLS_CACERT /etc/ipa/ca.crt

A side effect is that openldap tools (like ldapsearch) will access <master-fqdn> if the hostname is not specified in the command line.

This is a change of behavior, where before replica promotion the URI in ldap.conf was the one of the replica. With replica promotion, the URI is the one of the master

pvoborni commented 8 years ago

Not a blocker for 4.3 release.

mbasti commented 8 years ago

master:

23f5edb reset ldap.conf to point to newly installer replica after promotion

ipa-4-3:

c61bc48 reset ldap.conf to point to newly installer replica after promotion

Metadata Update from @tbordaz:
- Issue assigned to mbabinsk
- Issue set to the milestone: FreeIPA 4.3.1

7 years ago

Metadata

Assignee

mbabinsk

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.3.1

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#5488 During replica promotion /etc/openldap/ldap.conf is updated with the master URI Closed: Fixed None Opened 8 years ago by tbordaz.

Metadata

#5488 During replica promotion /etc/openldap/ldap.conf is updated with the master URI

Closed: Fixed None Opened 8 years ago by tbordaz.