https://fedorahosted.org/freeipa/ticket/4902 -- David Kupka
From 06f268e0c6435f3ba421787cf57e49c2ef2ac00d Mon Sep 17 00:00:00 2001 From: David Kupka <[email protected]> Date: Thu, 26 Feb 2015 04:44:26 -0500 Subject: [PATCH] Try continue ipa-client-automount even if nsslapd-minssf > 0.
If ipadiscovery.ipacheckldap returned NO_TLS_LDAP warn user and try to continue. https://fedorahosted.org/freeipa/ticket/4902 --- ipa-client/ipa-install/ipa-client-automount | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ipa-client/ipa-install/ipa-client-automount b/ipa-client/ipa-install/ipa-client-automount index 110e0ba13287e8c3061864b2e6c7b27d0ca83a6c..bbf9b916b02106dffe26dc592959abfa4712be5b 100755 --- a/ipa-client/ipa-install/ipa-client-automount +++ b/ipa-client/ipa-install/ipa-client-automount @@ -411,6 +411,8 @@ def main(): print "Anonymous access to the LDAP server is disabled." print "Proceeding without strict verification." print "Note: This is not an error if anonymous access has been explicitly restricted." + elif ldapret[0] == ipadiscovery.NO_TLS_LDAP: + root_logger.warning("Unencrypted access to LDAP is not supported.") elif ldapret[0] != 0: sys.exit('Unable to confirm that %s is an IPA server' % server) -- 2.1.0
_______________________________________________ Freeipa-devel mailing list [email protected] https://www.redhat.com/mailman/listinfo/freeipa-devel
