When a table is displaying a record set without entity's pkey attribute.
A checkbox value isn't properly prepared. This patch adds the
preparation (converts value to string).
https://fedorahosted.org/freeipa/ticket/2404
--
Petr Vobornik
From a17c947f05597ed43a614b4a9fa3368b14bb6fa4 Mon Sep 17
New version of openldap (openldap-2.4.26-6.fc16.x86_64) changed its
ABI and broke our TLS connection in ipa-replica-manage. This makes
it impossible to connect for example to Active Directory to set up
a winsync replication. We always receive a connection error stating
that Peer's certificate is
Netgroup nisdomain and hosts validation
nisdomain validation:
Added pattern to the 'nisdomain' parameter to validate the specified
nisdomain name. According to most common use cases the same patter as
for netgroup should fit. Unit-tests added.
https://fedorahosted.org/freeipa/ticket/2447
hosts
When dnsrecord-del pre_callback detects that the record does
not contain any records, it set a flag to connection context
and deletes the record object later. However, when more
dnsrecord-del share the same context (and this is the case of
ipa-replica-manage del $MASTER DNS cleanup), it may reuse
On 03/08/2012 05:33 AM, Martin Kosek wrote:
New version of openldap (openldap-2.4.26-6.fc16.x86_64) changed its
ABI and broke our TLS connection in ipa-replica-manage. This makes
it impossible to connect for example to Active Directory to set up
a winsync replication. We always receive a
On 7.3.2012 17:12, Rob Crittenden wrote:
Petr Vobornik wrote:
On 03/06/2012 09:56 PM, Rob Crittenden wrote:
Rob Crittenden wrote:
Jan Cholasta wrote:
Dne 18.1.2012 00:04, Rob Crittenden napsal(a):
Jan Cholasta wrote:
Dne 16.1.2012 22:02, Rob Crittenden napsal(a):
Rob Crittenden wrote:
On 03/06/2012 01:30 PM, Ondrej Hamada wrote:
On 03/06/2012 05:47 PM, Dmitri Pal wrote:
On 03/06/2012 10:59 AM, Simo Sorce wrote:
On Tue, 2012-03-06 at 10:56 -0500, Dmitri Pal wrote:
[...]
For a read-only KDC we need to investigate what's the better
solution.
There are many ways we can
Since sudo commands are case-sensitive, we can't use the CN as the RDN.
With this patch, the UUID is used instead.
It seems like a too easy fix. What am I missing?
As far as I understand, the fact that the DN has a different structure
now shouldn't cause problems, even if there still are
On Wed, 2012-03-07 at 18:02 -0500, Rob Crittenden wrote:
The value of nsslapd-anonlimitsdn wasn't being set properly because it
wasn't quoted. This will fix it, replacing whatever is there with a
correct value.
rob
The IPA anonlimits DN is now set correctly. However anonlimits in
Hi All,
I'm having a problem with my IPA installs; I can't seem to get the NIS mode
to work. I tried it with and without 'Migration Mode' enabled.
I bind to it and 'getent passwd' and 'getent group' just fine, but when I
type my password (post initial kinit password change) in for ssh, I get
attachment was scrubbed...
URL:
https://www.redhat.com/archives/freeipa-devel/attachments/20120308/f63089e2/attachment.html
--
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo
ACK. There are some minor issues.
On 3/7/2012 10:10 AM, Petr Vobornik wrote:
1) Add support of new options in dnsconfig
dnsconfig was extended of new attributes, so reflecting it in UI.
New attributes:
* idnsForwardPolicy
* idnsAllowSyncPTR
* idnsZoneRefresh
On 3/7/2012 10:15 AM, Petr Vobornik wrote:
Attaching patch file.
On 03/07/2012 05:10 PM, Petr Vobornik wrote:
Network validator allowed invalid mask format:
* leading zeros: 192.168.0.1/0024
* trailing chars: 192.168.0.1/24abcd
It was fixed.
https://fedorahosted.org/freeipa/ticket/2493
On 3/8/2012 3:47 AM, Petr Vobornik wrote:
When a table is displaying a record set without entity's pkey attribute.
A checkbox value isn't properly prepared. This patch adds the
preparation (converts value to string).
https://fedorahosted.org/freeipa/ticket/2404
ACK.
--
Endi S. Dewata
On Wed, 07 Mar 2012, Rob Crittenden wrote:
Set SELinux boolean httpd_manage_ipa so ipa_memcached will work in
enforcing mode.
This is being done in the HTTP instance so we can set both booleans
in one step and save a bit of time (it is still slow).
I would prefer all platform-specific
15 matches
Mail list logo