There are some issues deep down the replication instance that prevent
us from successfully add new connections between replicas using
SASL/GSSAPI credentials.
Force the request for the DM password for now so that the command can


Simo Sorce * Red Hat, Inc * New York
>From 99d6340d7287e81e1e65b346b3435945b806894e Mon Sep 17 00:00:00 2001
From: Simo Sorce <>
Date: Tue, 21 Dec 2010 16:39:02 -0500
Subject: [PATCH] Temporary fix for 'connect' operations

Currently the code depends on using a password to create replication
agreements. so this patch forces the request of the dirmgr password until we
can fix the internal issues that prevent using the amdin user with SASL/GSSAPI
to create replication agreements.
 install/tools/ipa-replica-manage |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/install/tools/ipa-replica-manage b/install/tools/ipa-replica-manage
index 50571249f20094c79b270c00442ea38979c4ddd7..da2c9d4a7b8e4ac15d4a993a4ebff6d649a88c2c 100755
--- a/install/tools/ipa-replica-manage
+++ b/install/tools/ipa-replica-manage
@@ -392,7 +392,7 @@ def main():
     if options.dirman_passwd:
         dirman_passwd = options.dirman_passwd
-        if not test_connection(host):
+        if not test_connection(host) or args[0] == "connect":
             dirman_passwd = getpass.getpass("Directory Manager password: ")
     options.dirman_passwd = dirman_passwd

Freeipa-devel mailing list

Reply via email to