[Freeipa-devel] [PATCH] 390 ipa-client discovery with anonymous access off

When RootDSE could be read (nsslapd-allow-anonymous-access set to rootdse), autodiscovery module failed to report success to the client installer. Remove faulty verified_servers flag from autodiscovery module as it has no point since we consider both scenarios (IPA server with anonymous access on

Re: [Freeipa-devel] [PATCH] 390 ipa-client discovery with anonymous access off

On 03/19/2013 09:11 AM, Martin Kosek wrote: When RootDSE could be read (nsslapd-allow-anonymous-access set to rootdse), autodiscovery module failed to report success to the client installer. Remove faulty verified_servers flag from autodiscovery module as it has no point since we consider both

Re: [Freeipa-devel] [PATCH] 1092 Fix LDAP lockout plugin

On 03/18/2013 04:07 PM, Rob Crittenden wrote: Martin Kosek wrote: On 03/15/2013 04:42 PM, Rob Crittenden wrote: Rob Crittenden wrote: Martin Kosek wrote: On 03/11/2013 10:07 PM, Rob Crittenden wrote: Fixed a number of issues applying password policy against LDAP binds. See patch for

Re: [Freeipa-devel] [PATCHES] 0197-0204 Installing without a CA, with custom SSL certs

On 03/18/2013 10:24 PM, Rob Crittenden wrote: Petr Viktorin wrote: Hello, While the work is not complete, these patches allowed me to install an IPA server without a CA, using PKCS#12 files for the server certs. The patches don't break normal installation. The --selfsign option (but not yet

Re: [Freeipa-devel] [PATCH] 1092 Fix LDAP lockout plugin

On 03/19/2013 10:57 AM, Martin Kosek wrote: On 03/18/2013 04:07 PM, Rob Crittenden wrote: Martin Kosek wrote: On 03/15/2013 04:42 PM, Rob Crittenden wrote: Rob Crittenden wrote: Martin Kosek wrote: On 03/11/2013 10:07 PM, Rob Crittenden wrote: Fixed a number of issues applying password

Re: [Freeipa-devel] [PATCH] 1092 Fix LDAP lockout plugin

Martin Kosek wrote: On 03/18/2013 04:07 PM, Rob Crittenden wrote: Martin Kosek wrote: On 03/15/2013 04:42 PM, Rob Crittenden wrote: Rob Crittenden wrote: Martin Kosek wrote: On 03/11/2013 10:07 PM, Rob Crittenden wrote: Fixed a number of issues applying password policy against LDAP binds.

Re: [Freeipa-devel] [PATCH] 388-389 Improve client install LDAP cert retrieval fallback

On 03/14/2013 02:41 PM, Martin Kosek wrote: [freeipa-mkosek-388-use-temporary-ccache-in-ipa-client-install.patch]: ipa-client-install failed if user had set his own KRB5CCNAME in his environment. Use a temporary CCACHE for the installer to avoid these kind of errors.

Re: [Freeipa-devel] [PATCH] 1092 Fix LDAP lockout plugin

Martin Kosek wrote: On 03/19/2013 10:57 AM, Martin Kosek wrote: On 03/18/2013 04:07 PM, Rob Crittenden wrote: Martin Kosek wrote: On 03/15/2013 04:42 PM, Rob Crittenden wrote: Rob Crittenden wrote: Martin Kosek wrote: On 03/11/2013 10:07 PM, Rob Crittenden wrote: Fixed a number of issues