Issue #5812: always qualify requests for admin - freeipa

freeipa

#5812 always qualify requests for admin

Closed: Fixed None Opened 8 years ago by pvoborni.

If default_domain_suffix is changed an IPA user requests must be fully qualified.
It would be good if IPA could always qualify the admin user.

If we are to set up a replica it tries to ssh as admin and because of the sssd
option it will not work so you have to remove it to set up a replica.

Expected result: Make the admin user always qualify.

Administrator should be able so setup a replica and the ssh step as admin should work
without removing the default_domain_suffix from sssd.

pvoborni commented 8 years ago

This is probably related only to conncheck, i.e. very limited scope as such it was put to 4.4 - to qualify the ssh connection done during conncheck

frenaud commented 7 years ago

attachment
freeipa-frenaud-0005-2-Always-qualify-requests-for-admin-in-ipa-replica-con.patch

mbasti commented 7 years ago

master:

4a7345e Always qualify requests for admin in ipa-replica-conncheck

Metadata Update from @pvoborni:
- Issue assigned to frenaud
- Issue set to the milestone: FreeIPA 4.4

7 years ago

Metadata

Assignee

frenaud

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.4

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

Installation

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1324055

tester

None

changelog

None

design

None

freeipa

Source Code

#5812 always qualify requests for admin Closed: Fixed None Opened 8 years ago by pvoborni.

Metadata

#5812 always qualify requests for admin

Closed: Fixed None Opened 8 years ago by pvoborni.