On 11/08/2010 11:07 PM, Pavel Zůna wrote:
Finally, there it is. :)
I redesigned the whole thing to fit the baseldap model.
Here's some example on how it's used:
# create zone 'example.com'
# ipa dnszone-add example.com --name=ns.example.com
--admin=ad...@example.com
# create a resource in z
The pwpolicy plugin wasn't returning effective rights. I fixed that and
it will also return the rights for cospriority if showing a group.
rob
>From 624ee8daeb26c420722d11e6f37af315e4922847 Mon Sep 17 00:00:00 2001
From: Rob Crittenden
Date: Tue, 9 Nov 2010 16:05:54 -0500
Subject: [PATCH] Fix r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/09/2010 07:26 PM, Rob Crittenden wrote:
> Rob Crittenden wrote:
>> Jakub Hrozek wrote:
>>> -BEGIN PGP SIGNED MESSAGE-
>>> Hash: SHA1
>>>
>>> (resending to the list, I accidentally replied to Rob only before..)
>>>
>>> On 11/02/2010 04:24
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/09/2010 07:28 PM, Rob Crittenden wrote:
> Jakub Hrozek wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA1
>>
>> On 11/08/2010 09:12 PM, Jakub Hrozek wrote:
> This patch is fine as-is so I'll give you a choice:
>
> 1. You can u
On Mon, 8 Nov 2010 19:34:12 -0500
Simo Sorce wrote:
> Patch 0004: Add basic certification creation for selfsigned CA and KDC
> configuration. opnessl had to be used because the NSS tools cannot
> deal with the special subjectaltName needed for the KDC certificate.
Rebased this one on top of mast
Rob Crittenden wrote:
Simo Sorce wrote:
This patch configures IPA to use the currently strongest available
enctype for the master key.
Fixes #456
Simo.
ack
pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.red
On Tue, 09 Nov 2010 14:00:00 -0500
Rob Crittenden wrote:
> +
> + Add a host that can manage this host's keytab and certificate:
> + ipa host-add-host --hosts=test2 test
> """
>
I do not want to nack, but looking at this command in isolation I am
quite confused at what it is supposed to do (
Simo Sorce wrote:
This patch configures IPA to use the currently strongest available
enctype for the master key.
Fixes #456
Simo.
ack
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
From 011b2db628a8239bf5a8da9989c6c026b6f017a6 Mon Sep 17 00:00:00 2001
From: Adam Young
Date: Tue, 9 Nov 2010 14:13:39 -0500
Subject: [PATCH] Label cleanup
Also, addeed in the default shell field.
---
install/static/user.js | 26 +-
1 files changed, 13 insertions(+),
Pavel Zůna wrote:
Ticket #452
Pavel
ack, pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Instead of print and return, use sys.exit() to quit scripts with an
error message and a non zero return code.
https://fedorahosted.org/freeipa/ticket/425
This isn't applying for me. Can you try to rebase it?
thanks
rob
This will let one host do things on behalf of another host (request a
keytab, certificate, etc).
ticket https://fedorahosted.org/freeipa/ticket/280
rob
>From 9e9ae1b890c324f05af71540763631a6e91c2a06 Mon Sep 17 00:00:00 2001
From: Rob Crittenden
Date: Tue, 9 Nov 2010 13:57:02 -0500
Subject: [PA
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 08:56 PM, Rob Crittenden wrote:
Rename 60sudo.ldif to 60ipasudo.ldif. We are overwriting a file of the
same name from the default 389-ds schema.
rob
Ack
pushed to master
__
Rob Crittenden wrote:
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
(resending to the list, I accidentally replied to Rob only before..)
On 11/02/2010 04:24 AM, Rob Crittenden wrote:
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
https://fedorahosted.o
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 08:28 PM, Rob Crittenden wrote:
ipa-nis-manage was broken because of a signature change to
ldap2.getentry(). Two new arguments were added before normalize and a
call to this in ipa-nis-manage was relying on position
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 10:38 PM, Rob Crittenden wrote:
Add a couple of examples in ipa-replica-install.1 in an effort to
clarify where one does a re-init.
rob
Ack
pushed to master
___
Fre
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/08/2010 09:12 PM, Jakub Hrozek wrote:
This patch is fine as-is so I'll give you a choice:
1. You can update this patch and log those things that will be queried
if not provided on the CLI.
I'd prefer this option. The patc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/08/2010 09:12 PM, Jakub Hrozek wrote:
>> > This patch is fine as-is so I'll give you a choice:
>> >
>> > 1. You can update this patch and log those things that will be queried
>> > if not provided on the CLI.
> I'd prefer this option. The patch r
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 10:00 PM, Rob Crittenden wrote:
There was a corner case where the value of --ip-address was never
verified if you were also setting up DNS.
Added this bit of information to the man page too.
ticket 399
rob
Two
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Instead of print and return, use sys.exit() to quit scripts with an
error message and a non zero return code.
https://fedorahosted.org/freeipa/ticket/425
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora
On Mon, 8 Nov 2010 19:34:12 -0500
Simo Sorce wrote:
>
> This set of patches implement the first part of ticket #55
> The patchset only adds the ability to install pkinit with the
> selfsigned CA (or with externally provided certs).
>
> If you need to use/test dogtag you can pass the --no-pkinit
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 08:28 PM, Rob Crittenden wrote:
> ipa-nis-manage was broken because of a signature change to
> ldap2.getentry(). Two new arguments were added before normalize and a
> call to this in ipa-nis-manage was relying on positional arguments. Thi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 10:00 PM, Rob Crittenden wrote:
> There was a corner case where the value of --ip-address was never
> verified if you were also setting up DNS.
>
> Added this bit of information to the man page too.
>
> ticket 399
>
> rob
>
Two quest
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 10:38 PM, Rob Crittenden wrote:
> Add a couple of examples in ipa-replica-install.1 in an effort to
> clarify where one does a re-init.
>
> rob
>
Ack
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/04/2010 08:56 PM, Rob Crittenden wrote:
> Rename 60sudo.ldif to 60ipasudo.ldif. We are overwriting a file of the
> same name from the default 389-ds schema.
>
> rob
>
Ack
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment
25 matches
Mail list logo
