freeipa

FreeIPA is an integrated Identity and Authentication solution for Linux/UNIX networked environments.  |  http://www.freeipa.org/

#5737 ipa trust-find show false positive warnings about broken trusts

Created 2 years ago by mbasti
Modified 2 years ago

# ipa trust-find
ipa: WARNING: Your trust to ipasub2008r2-1.ipaad2008r2.test is broken. Please re-create it by running 'ipa trust-add' again.
----------------
2 trusts matched
----------------
  Realm name: ipaad2008r2.test
  Domain NetBIOS name: IPAAD2008R2
  Domain Security Identifier: S-1-5-21-1765444267-4284514389-3232425237
  Trust type: Active Directory domain

  Realm name: ipasub2008r2-1.ipaad2008r2.test
  Domain NetBIOS name: IPASUB2008R2-1
  Domain Security Identifier: S-1-5-21-469193889-4273894478-2486872656
----------------------------
Number of entries returned 2
----------------------------

Warning should be shown only for parent domains. Subdomains do not contain SIDs.

Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1311470 (Red Hat Enterprise Linux 7)

master:

  • de8c6d8 Fix broken trust warnings

ipa-4-3:

  • 1e02086 Fix broken trust warnings

ipa-4-2:

  • fb11384 Fix broken trust warnings
2 years ago

Metadata Update from @mbasti:
- Issue assigned to mbasti
- Issue set to the milestone: FreeIPA 4.2.4

Login to comment on this ticket.

defect

Trusts

1

abokovoy

https://bugzilla.redhat.com/show_bug.cgi?id=1311470

cancel