September 2021 - FreeIPA-devel - Fedora Mailing-Lists

[freeipa PR#6001][opened] subid: update subid-match

by fcami

URL: https://github.com/freeipa/freeipa/pull/6001 Author: fcami Title: #6001: subid: update subid-match Action: opened PR body: """ Previously, the subid-match command would output the full DN of the owner of the matched range. With this change, the UID of the owner is displayed, just like for other subid- commands. Fixes: Signed-off-by: François Cami <fcami(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/6001/head:pr6001 git checkout pr6001

2 years

2
1
0 / 0

[freeipa PR#6000][opened] [Backport][ipa-4-9] extdom: return LDAP_NO_SUCH_OBJECT if domains differ

by rcritten

URL: https://github.com/freeipa/freeipa/pull/6000 Author: rcritten Title: #6000: [Backport][ipa-4-9] extdom: return LDAP_NO_SUCH_OBJECT if domains differ Action: opened PR body: """ This PR was opened automatically because PR #5991 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/6000/head:pr6000 git checkout pr6000

2 years

2
1
0 / 0

[freeipa PR#5999][opened] [Backport][ipa-4-8] extdom: return LDAP_NO_SUCH_OBJECT if domains differ

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5999 Author: rcritten Title: #5999: [Backport][ipa-4-8] extdom: return LDAP_NO_SUCH_OBJECT if domains differ Action: opened PR body: """ This PR was opened automatically because PR #5991 was pushed to master and backport to ipa-4-8 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5999/head:pr5999 git checkout pr5999

2 years

2
1
0 / 0

[freeipa PR#5998][opened] [Backport][ipa-4-6] extdom: return LDAP_NO_SUCH_OBJECT if domains differ

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5998 Author: rcritten Title: #5998: [Backport][ipa-4-6] extdom: return LDAP_NO_SUCH_OBJECT if domains differ Action: opened PR body: """ This PR was opened automatically because PR #5991 was pushed to master and backport to ipa-4-6 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5998/head:pr5998 git checkout pr5998

2 years

2
1
0 / 0

[freeipa PR#5995][opened] Catch and log errors when adding CA profiles

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5995 Author: rcritten Title: #5995: Catch and log errors when adding CA profiles Action: opened PR body: """ Rather than stopping the installer entirely, catch and report errors adding new certificate profiles. It was discovered that installing a newer IPA that has the ACME profile which requires sanToCNDefault will fail when installing a new server against a very old one that lacks this class. Deleting the LDAP profile in cn=certprofiles,cn=ca,$SUFFIX and then running ipa-server-install on the newer server will add the missing profile. https://pagure.io/freeipa/issue/8974 Signed-off-by: Rob Crittenden <rcritten(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5995/head:pr5995 git checkout pr5995

2 years

1
1
0 / 0

[freeipa PR#5991][opened] extdom: return LDAP_NO_SUCH_OBJECT if domains differ

by sumit-bose

URL: https://github.com/freeipa/freeipa/pull/5991 Author: sumit-bose Title: #5991: extdom: return LDAP_NO_SUCH_OBJECT if domains differ Action: opened PR body: """ If a client sends a request to lookup an object from a given trusted domain by UID or GID and an object with matching ID is only found in a different domain the extdom should return LDAP_NO_SUCH_OBJECT to indicate to the client that the requested ID does not exists in the given domain. Resolves: https://pagure.io/freeipa/issue/8965 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5991/head:pr5991 git checkout pr5991

2 years

2
1
0 / 0

Can bind/named 'notifies' be disabled in freeipa?

by Harry G. Coin

In a master/replica freeipa setup with DNS, if we know there will never be any other systems running bind/named for the freeipa managed domains, can we safely add an option to the named options ext file to disable the log-jamming frequent transmission of 'named ... sending notifies...'? As I understood it, the bind-dyn-ldap and the ldap master/replica update process accomplishes sending changes to the other name servers what the notifies are all about as well. So is there any benefit to the named/bind daemons logging and swapping notify packets when there are no slave named resolvers and never will be except as freeipa replicas? Thanks Harry

2 years

1
0
0 / 0

[freeipa PR#5997][opened] [Backport][ipa-4-9] Add URI system records for KDC

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5997 Author: rcritten Title: #5997: [Backport][ipa-4-9] Add URI system records for KDC Action: opened PR body: """ This PR was opened automatically because PR #5990 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5997/head:pr5997 git checkout pr5997

2 years, 1 month

2
1
0 / 0

2023

2022

2021

2020

2019

2018

2017

FreeIPA-devel September 2021