Re: [Freeipa-devel] [PATCH] 331 Update SELinux policy for dogtag10

Martin Kosek wrote: On 11/06/2012 10:25 AM, Martin Kosek wrote: Incorporate SELinux policy changes introduced in Dogtag 10 in IPA SELinux policy: - dogtag10 now runs with pki_tomcat_t context instead of pki_ca_t - certmonger related rule are now integrated in system policy and can be removed

Re: [Freeipa-devel] [PATCH] Special case NFS related ticket to avoid attaching MS-PACs

Sumit Bose wrote: On Wed, Nov 28, 2012 at 12:44:27PM -0500, Simo Sorce wrote: Fixes: https://fedorahosted.org/freeipa/ticket/3263 Details in the commit. ACK pushed to master and ipa-3-0 ___ Freeipa-devel mailing list Freeipa-devel@redhat.com http

Re: [Freeipa-devel] [PATCH 0005] Clarified error message with ipa-client-automount

Lynn Root wrote: Returns a clearer hint when user is running ipa-client-automount with possible firewall up and blocking need ports. Not sure if this patch is worded correctly in order to address the potential firewall block when running ipa-client-automount. Perhaps a different error should be

Re: [Freeipa-devel] [PATCH] Lookup the user SID in external group as well

Simo Sorce wrote: On Wed, 2012-11-14 at 18:26 +0100, Sumit Bose wrote: Hi, Jakub found that currently only group SIDs are used to find group memberships of users from trusted domain. The attached patch adds the user SID as well. Fixes https://fedorahosted.org/freeipa/ticket/3257 . ack Simo.