See commit message.

Dogtag is changing its behavior soon (as in: tomorrow). This patch will be needed for IPA to install on Fedora 18.

It would be nice if this went in our daily builds ASAP, so Dogtag people can test. Sorry for the short notice, I originally misunderstood Ade and included it in the merged database patches.

From 60fd66d8960397f25b847f415930488018e8cfc0 Mon Sep 17 00:00:00 2001
From: Petr Viktorin <>
Date: Mon, 12 Nov 2012 09:53:14 -0500
Subject: [PATCH] Provide explicit user name for Dogtag installation scripts

Dogtag 10 is changing its defaults, so we need to explicitly provide
the 'admin' user name to keep current functionality.
 ipaserver/install/ |    3 +++
 1 files changed, 3 insertions(+), 0 deletions(-)

diff --git a/ipaserver/install/ b/ipaserver/install/
index 1f950b990ca88af82619919b50d6bafb0e35ec96..163f5c86bba8ca17223e3697f25e1919fe4577a4 100644
--- a/ipaserver/install/
+++ b/ipaserver/install/
@@ -612,6 +612,8 @@ class CAInstance(service.Service):
             "pki_client_database_purge": "False",
             "pki_client_pkcs12_password": self.admin_password,
             "pki_security_domain_name": self.domain_name,
+            "pki_admin_name":  "admin",
+            "pki_admin_uid":  "admin",
             "pki_admin_email":  "root@localhost",
             "pki_admin_password": self.admin_password,
             "pki_admin_nickname": "ipa-ca-agent",
@@ -651,6 +653,7 @@ class CAInstance(service.Service):
                 "pki_clone_pkcs12_path": "/tmp/ca.p12",
                 "pki_security_domain_hostname": self.master_host,
                 "pki_security_domain_https_port": "443",
+                "pki_security_domain_user": "admin",
                 "pki_security_domain_password": self.admin_password,
                 "pki_clone_replication_security": "TLS",
                 "pki_clone_uri": \

Freeipa-devel mailing list

Reply via email to