Re: [Freeipa-devel] Bug?
On 06/24/2013 03:00 PM, Rob Crittenden wrote: Dean Hunter wrote: Is this a bug for which I should open a bug report? # Configure the Network File Server yum install --assumeyes freeipa-admintools Loaded plugins: langpacks, refresh-packagekit Package freeipa-admintools-3.2.1-1.fc19.x86_64 already installed and latest version Nothing to do echo adminpassword | kinit admin Password for ad...@hunter.org mailto:ad...@hunter.org ipa service-add nfs/ipa19.hunter.org --- Added service nfs/ipa19.hunter.org@HUNTER. mailto:ipa19.hunter.org@HUNTERORG --- Principal: nfs/ipa19.hunter@hunter.org Managed by: ipa19.hunter.org ipa-getkeytab \\ --keytab /etc/krb5.keytab \\ --principal nfs/ipa19.hunter.org \\ --server ipa19.hunter.org Failed to retrieve encryption type Camellia-128 CTS mode with CMAC (#25) Failed to retrieve encryption type Camellia-256 CTS mode with CMAC (#26) kdestroy Not really. Camellia was enabled by default in 1.11 (it was added back in 1.9, but disabled by default). IPA does not currently enable the cipher on the KDC. So this is the client requesting all enabled ciphers and the server not returning the Camellia ciphers. It is just a warning. At best this is an RFE to enable Camellia by default on the KDC. rob I filed an upstream ticket: https://fedorahosted.org/freeipa/ticket/3749 Thanks Dean and Rob! Martin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
[Freeipa-devel] Bug?
Is this a bug for which I should open a bug report? # Configure the Network File Server yum install --assumeyes freeipa-admintools Loaded plugins: langpacks, refresh-packagekit Package freeipa-admintools-3.2.1-1.fc19.x86_64 already installed and latest version Nothing to do echo adminpassword | kinit admin Password for ad...@hunter.org ipa service-add nfs/ipa19.hunter.org --- Added service nfs/ipa19.hunter@hunter.org --- Principal: nfs/ipa19.hunter@hunter.org Managed by: ipa19.hunter.org ipa-getkeytab \\ --keytab /etc/krb5.keytab \\ --principal nfs/ipa19.hunter.org \\ --server ipa19.hunter.org Failed to retrieve encryption type Camellia-128 CTS mode with CMAC (#25) Failed to retrieve encryption type Camellia-256 CTS mode with CMAC (#26) kdestroy ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] Bug?
Dean Hunter wrote: Is this a bug for which I should open a bug report? # Configure the Network File Server yum install --assumeyes freeipa-admintools Loaded plugins: langpacks, refresh-packagekit Package freeipa-admintools-3.2.1-1.fc19.x86_64 already installed and latest version Nothing to do echo adminpassword | kinit admin Password for ad...@hunter.org mailto:ad...@hunter.org ipa service-add nfs/ipa19.hunter.org --- Added service nfs/ipa19.hunter.org@HUNTER. mailto:ipa19.hunter.org@HUNTERORG --- Principal: nfs/ipa19.hunter@hunter.org Managed by: ipa19.hunter.org ipa-getkeytab \\ --keytab /etc/krb5.keytab \\ --principal nfs/ipa19.hunter.org \\ --server ipa19.hunter.org Failed to retrieve encryption type Camellia-128 CTS mode with CMAC (#25) Failed to retrieve encryption type Camellia-256 CTS mode with CMAC (#26) kdestroy Not really. Camellia was enabled by default in 1.11 (it was added back in 1.9, but disabled by default). IPA does not currently enable the cipher on the KDC. So this is the client requesting all enabled ciphers and the server not returning the Camellia ciphers. It is just a warning. At best this is an RFE to enable Camellia by default on the KDC. rob ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
[Freeipa-devel] Bug fix tickets
Petr, the report for UI tickets Is: https://fedorahosted.org/freeipa/report/12 I'd like you to take a look at the two 2.1.1 tickets: I've assigned them to pvoborni, but I am not sure that is the right Fedora Account name, please adjust as necessary. For 1477, please follow the second option, identify that there are no records left after a mod, report this using a dialog to the user, and redirect back to the search page. For 1481, I think we want to A) remove the retry button from the error reporting dialog B) Allow customization of the button message for the error dialog. By default it says cancel but for this we just want OK C) treat this error case as a success case: if the user does add close the Add dialog, if the user does add and edit, go to the edit page for the newly created host. ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel