When ipa server/replica is installed in CA-less mode with a KDC certificate, the KDC cert is installed in /var/kerberos/krb5kdc/kdc.crt but the permissions are left as 0600 and this breaks WebUI authentication
The file has 600 root:root permissions. Connection to the WebGUI fails.
The file should have 644 root:root permissions. Connection to the WebGUI should succeed.
Metadata Update from @frenaud: - Issue assigned to frenaud
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1863616
Issue linked to Bugzilla: Bug 1863616
Metadata Update from @frenaud: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/4974 - Custom field rhbz reset (from https://bugzilla.redhat.com/show_bug.cgi?id=1863616) - Issue set to the milestone: FreeIPA 4.8.9
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1863616, https://bugzilla.redhat.com/show_bug.cgi?id=1863619
Issue linked to Bugzilla: Bug 1863619
master:
ipa-4-6:
ipa-4-8:
Metadata Update from @frenaud: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.