URL: https://github.com/freeipa/freeipa/pull/840 Author: Tiboris Title: #840: Add Role 'Enrollment Administrator' Action: synchronized
To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/840/head:pr840 git checkout pr840
From 58dcb84b0c5de9bf8eb7c5bc59a1ff5e0beab458 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tibor=20Dudl=C3=A1k?= <tdud...@redhat.com> Date: Thu, 1 Jun 2017 14:27:02 +0200 Subject: [PATCH] Add Role 'Enrollment Administrator' User with the 'Enrollment Administrator' role assigned is able to enroll client with ipa-client-install command. Resolves: https://pagure.io/freeipa/issue/6852 --- install/updates/45-roles.update | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/install/updates/45-roles.update b/install/updates/45-roles.update index fb28464f25..e1681bf670 100644 --- a/install/updates/45-roles.update +++ b/install/updates/45-roles.update @@ -91,3 +91,12 @@ add:member: cn=Security Architect,cn=roles,cn=accounts,$SUFFIX dn: cn=Password Policy Administrator,cn=privileges,cn=pbac,$SUFFIX add:member: cn=Security Architect,cn=roles,cn=accounts,$SUFFIX +dn: cn=Enrollment Administrator,cn=roles,cn=accounts,$SUFFIX +default:objectClass: groupofnames +default:objectClass: nestedgroup +default:objectClass: top +default:cn: Enrollment Administrator +default:description: Enrollment Administrator responsible for client(host) enrollment + +dn: cn=Host Enrollment,cn=privileges,cn=pbac,$SUFFIX +add:member: cn=Enrollment Administrator,cn=roles,cn=accounts,$SUFFIX
_______________________________________________ FreeIPA-devel mailing list -- freeipa-devel@lists.fedorahosted.org To unsubscribe send an email to freeipa-devel-le...@lists.fedorahosted.org
