There are some issues deep down the replication instance that prevent
us from successfully add new connections between replicas using
SASL/GSSAPI credentials.
Force the request for the DM password for now so that the command can
work.

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York
>From 99d6340d7287e81e1e65b346b3435945b806894e Mon Sep 17 00:00:00 2001
From: Simo Sorce <sso...@redhat.com>
Date: Tue, 21 Dec 2010 16:39:02 -0500
Subject: [PATCH] Temporary fix for 'connect' operations

Currently the code depends on using a password to create replication
agreements. so this patch forces the request of the dirmgr password until we
can fix the internal issues that prevent using the amdin user with SASL/GSSAPI
to create replication agreements.
---
 install/tools/ipa-replica-manage |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/install/tools/ipa-replica-manage b/install/tools/ipa-replica-manage
index 50571249f20094c79b270c00442ea38979c4ddd7..da2c9d4a7b8e4ac15d4a993a4ebff6d649a88c2c 100755
--- a/install/tools/ipa-replica-manage
+++ b/install/tools/ipa-replica-manage
@@ -392,7 +392,7 @@ def main():
     if options.dirman_passwd:
         dirman_passwd = options.dirman_passwd
     else:
-        if not test_connection(host):
+        if not test_connection(host) or args[0] == "connect":
             dirman_passwd = getpass.getpass("Directory Manager password: ")
 
     options.dirman_passwd = dirman_passwd
-- 
1.7.3.3

_______________________________________________
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel

Reply via email to