Re: [Freeipa-devel] [PATCH 0014-0016][Tests] Authentication indicators

On 07/01/2016 05:13 PM, Lenka Doudova wrote: On 07/01/2016 02:42 PM, Milan Kubík wrote: On 06/16/2016 03:23 PM, Lenka Doudova wrote: Hi, attached are tests for authentication indicators. Please note: 1. newly created service tracker is not exactly complete, list of unimplemented methods

[Freeipa-devel] CA-less installs: passive certmonger - watch-and-warn mode

Hi, our docs https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/install-server.html#install-determine-ca claim this: "The certmonger service is not used to track certificates. Therefore, it does not warn you of

Re: [Freeipa-devel] CA-less installs: passive certmonger - watch-and-warn mode

Petr Spacek wrote: On 8.7.2016 15:31, Rob Crittenden wrote: Petr Spacek wrote: Hi, our docs https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/install-server.html#install-determine-ca claim this: "The

[Freeipa-devel] [PATCH 0552] Vault: enable client side plugins CLI

Patch attached. https://fedorahosted.org/freeipa/ticket/6035 From 2c97c316c1db49daeda15c709f082ee083a741ad Mon Sep 17 00:00:00 2001 From: Martin Basti Date: Fri, 8 Jul 2016 15:53:25 +0200 Subject: [PATCH] Enable vault-* commands on client Client plugins fot vault commands

Re: [Freeipa-devel] [PATCH 0552] Vault: enable client side plugins CLI

On 08.07.2016 16:31, Martin Basti wrote: Patch attached. https://fedorahosted.org/freeipa/ticket/6035 Please not this ticket during review https://fedorahosted.org/freeipa/ticket/6047 -- Manage your subscription for the Freeipa-devel mailing list:

Re: [Freeipa-devel] [PATCH 0552] Vault: enable client side plugins CLI

On Fri, 08 Jul 2016, Martin Basti wrote: Patch attached. https://fedorahosted.org/freeipa/ticket/6035 From 2c97c316c1db49daeda15c709f082ee083a741ad Mon Sep 17 00:00:00 2001 From: Martin Basti Date: Fri, 8 Jul 2016 15:53:25 +0200 Subject: [PATCH] Enable vault-* commands on

Re: [Freeipa-devel] CA-less installs: passive certmonger - watch-and-warn mode

Petr Spacek wrote: Hi, our docs https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/install-server.html#install-determine-ca claim this: "The certmonger service is not used to track certificates. Therefore, it

Re: [Freeipa-devel] CA-less installs: passive certmonger - watch-and-warn mode

On 8.7.2016 15:31, Rob Crittenden wrote: > Petr Spacek wrote: >> Hi, >> >> our docs >> >> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/install-server.html#install-determine-ca >> >> >> claim this: >> "The

Re: [Freeipa-devel] [Test][Patch-0047] Added a test for Ticket N 5964

Hi Martin, Thanks for the review! On 07/08/2016 02:18 PM, Martin Basti wrote: On 27.06.2016 13:53, Oleg Fayans wrote: Hi guys, Is there a chance the patches NN 0047.1 and 0048.1 get reviewed before 4.4 release? They cover a good part of the Managed Topology 4.4 feature. On 06/17/2016

Re: [Freeipa-devel] Proposed patch to resolve #828866 [RFE] enhance --subject option for ipa-server-install

On 8.7.2016 05:42, Fraser Tweedale wrote: > > 2. If argument contains CN but it is not the "most specific" > RDN, move it to the front (to satisfy requirement of Dogtag > profile). I wonder if we can relax the requirement in Dogtag so no reordering is needed. After all, DN is

[Freeipa-devel] CI DNS locations: basic test for SRV records

See commit message for details. Patch attached. This test does not cover: * NTP service records * ipa-ca A/ records * ADTrust records Should I open tickets to cover cases above? From 63335082b23a8ecc4195bece9944b74d4ca3f795 Mon Sep 17 00:00:00 2001 From: Martin Basti

Re: [Freeipa-devel] [Test][patch-0053] Forced-client-reenrollment test fixed.

On 07.07.2016 08:09, Oleg Fayans wrote: Updated version of the patch is attached with the failing tests marked as xfailed (let's make the jenkins green). On 07/04/2016 10:50 PM, Oleg Fayans wrote: 2 out of 7 tests currently fail due to a known issue [1], others pass. [1]

[Freeipa-devel] [PATCH 0550] host-find: do not show SSH keys by default

Reproducible only with 2+ hosts, patch attached. https://fedorahosted.org/freeipa/ticket/6043 From 4de437260bc35ebe31a9028c1289e96bfd6a52b0 Mon Sep 17 00:00:00 2001 From: Martin Basti Date: Fri, 8 Jul 2016 13:40:02 +0200 Subject: [PATCH] host-find: do not show SSH key by

Re: [Freeipa-devel] Proposed patch to resolve #828866 [RFE] enhance --subject option for ipa-server-install

On 07/08/2016 05:42 AM, Fraser Tweedale wrote: > On Thu, Jul 07, 2016 at 04:10:51PM +0200, Sebastian Hetze wrote: >> >> On 07/07/2016 03:16 PM, Rob Crittenden wrote: >>> Sebastian Hetze wrote: Hi * attached you find a patch that adds new options --subject_cn and

Re: [Freeipa-devel] Proposed patch to resolve #828866 [RFE] enhance --subject option for ipa-server-install

On 07/08/2016 12:57 PM, Sebastian Hetze wrote: > > > With your proposal, a subject would look like this: > Subject: CN=Custom CA Name,E=caad...@example.com,OU=Example IT,O=Example > Corp,L=City,ST=State,C=US > > I will check with my customer if this can possibly be signed by the AD > PKI, and if

Re: [Freeipa-devel] [Test][Patch-0047] Added a test for Ticket N 5964

On 27.06.2016 13:53, Oleg Fayans wrote: Hi guys, Is there a chance the patches NN 0047.1 and 0048.1 get reviewed before 4.4 release? They cover a good part of the Managed Topology 4.4 feature. On 06/17/2016 11:18 AM, Oleg Fayans wrote: One more test was added to the patch-0048 On