-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 12/07/2010 05:50 PM, Rob Crittenden wrote:
Add some documentation to the migrate-ds command.
rob
Ack
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
On Wed, 8 Dec 2010 08:25:25 +0100
Jan Zelený jzel...@redhat.com wrote:
Simo Sorce sso...@redhat.com wrote:
This patch allows patch 0025 to work properly for replica
installation so it is a prereq for it now.
It split installation so that certain steps can be done after the
tree has
On 12/07/2010 10:54 PM, Rob Crittenden wrote:
Adam Young wrote:
On 12/07/2010 04:33 PM, Rob Crittenden wrote:
Add plugin for manage self-service ACIs
This is just a thin wrapper around the aci plugin, controlling what
types of ACIs can be added.
Right now only ACIs in the basedn can be
This patch address's the CLI Operations needed to toggle enable / disable
on the SudoRules.
I will need to work with Nalin to adjust the Compat Plugin so that
'disabled' rules are ignored for Compat translation.
On 12/8/10 7:39 AM, Endi Sukma Dewata edew...@redhat.com wrote:
On 12/7/2010 6:25
On 12/8/2010 10:03 AM, JR Aquino wrote:
This patch address's the CLI Operations needed to toggle enable / disable
on the SudoRules.
Thanks for such a quick response!
ACK and pushed to master.
--
Endi S. Dewata
___
Freeipa-devel mailing list
On 12/08/2010 12:48 PM, Adam Young wrote:
On 12/08/2010 11:02 AM, Rob Crittenden wrote:
Adam Young wrote:
On 12/07/2010 10:54 PM, Rob Crittenden wrote:
Adam Young wrote:
On 12/07/2010 04:33 PM, Rob Crittenden wrote:
Add plugin for manage self-service ACIs
This is just a thin wrapper around
The problem was that the normalizer was returning each value as a tuple
which we were then appending to a list, so it looked like [(u'value1',),
(u'value2',),...]. If there was a single value we could end up adding a
tuple to a list which would fail. Additionally python-ldap doesn't like
lists
On 12/08/2010 01:34 PM, Rob Crittenden wrote:
Adam Young wrote:
On 12/08/2010 12:48 PM, Adam Young wrote:
On 12/08/2010 11:02 AM, Rob Crittenden wrote:
Adam Young wrote:
On 12/07/2010 10:54 PM, Rob Crittenden wrote:
Adam Young wrote:
On 12/07/2010 04:33 PM, Rob Crittenden wrote:
Add
Round out our trio of access control plugins. This adds group to group
delegation where you can grant group A the ability to write a set of
attributes of group B (v1-style delegation).
rob
From e374d8886280d515088c63cc4e0d707e97f0bf42 Mon Sep 17 00:00:00 2001
From: Rob Crittenden
I just had a chance to revisit this.
It appears that the host piece still doesn't work quite right.
This time, I am missing the sudoHost translation entirely.
dn:
ipaUniqueID=e52c8e06-0315-11e0-b2dd-8a3d259cb0b9,cn=sudorules,dc=example,dc
=com
objectClass: ipaassociation
objectClass:
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 12/07/2010 11:19 PM, Rob Crittenden wrote:
While testing Jakub's patch I discovered that the automount tests were
pretty badly broken (not related to his changes). This should fix things.
rob
All tests pass now.
Ack
The error handling refers to lde as a typo... When the exception occurs
due to a database error, it gets captured as: dbe.
This is a One line bug fix for compat and nis tools
freeipa-jaquino-0004-dbe-instead-of-lde.patch
Description: freeipa-jaquino-0004-dbe-instead-of-lde.patch
This is what I see when I manually add the ipaSudoRule entry to my test
server:
dn: cn=devel,cn=sudoers,dc=example,dc=com
objectClass: sudoRole
sudoUser: %ops
sudoHost: auth4.ops.expertcity.com
sudoCommand: /usr/bin/less
cn: devel
That's assuming the group and host entries you're using
On Wed, Dec 08, 2010 at 11:12:34PM +, JR Aquino wrote:
I guess the piece that is still missing then is:
Instead of:
sudoHost: hostname.com
It should be:
sudoHost: +production - which is the group assigned to the ipasudorule.
The memberHost
When we are creating a selfsign file based CA, do it at the same time
we would do the dogtag CA creation instead of doing it within the
dsinstance.
Also move around or changes some other related minor details to clean-up
a bit the code.
Automatically publishes the CA cert to /etc/ipa/ca.crt,
15 matches
Mail list logo
