[
https://issues.apache.org/jira/browse/AMBARI-24960?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16700936#comment-16700936
]
Hudson commented on AMBARI-24960:
---------------------------------
SUCCESS: Integrated in Jenkins build Ambari-trunk-Commit #10336 (See
[https://builds.apache.org/job/Ambari-trunk-Commit/10336/])
AMBARI-24960. Removing warning about requirement for IPA password policy
(github:
[https://gitbox.apache.org/repos/asf?p=ambari.git&a=commit&h=fbc821def75909d9b621f47c6ec64da54d26ddac])
* (edit) ambari-web/app/controllers/main/admin/kerberos/step1_controller.js
* (edit) ambari-web/app/messages.js
> Remove warning about requirement for IPA password policy without expiration
> in Ambari kerberos wizard
> -----------------------------------------------------------------------------------------------------
>
> Key: AMBARI-24960
> URL: https://issues.apache.org/jira/browse/AMBARI-24960
> Project: Ambari
> Issue Type: Task
> Components: ambari-web
> Affects Versions: 2.7.0
> Reporter: Sandor Molnar
> Assignee: Sandor Molnar
> Priority: Minor
> Labels: pull-request-available
> Fix For: 2.8.0
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> The Ambari kerberos wizard for Existing FreeIPA displays a warning about
> setting up a password policy without expiration for the kerberos principals.
> As these (user and service) principals are not created with a password, the
> password expiration policy does not apply to them. I verified this by
> maintaining a cluster by maintaining a kerberized cluster for 120+ days,
> where the password for my ldapbind (and other accounts that do have
> passwords) expired in 90 days per default policy, without any impact to my
> kerberos principals or cluster operations.
> Unless we've seen contradictory information, let's please remove this warning
> from the wizard to avoid confusing users on what is needed here.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
