[Freeipa-devel] Time-Based Account Policies - Feature Proposal

Hi, I have prepared a feature proposal for the wiki. I followed the Feature Proposal Template and the chapter How to Test is currently missing so it might rather be considered a draft. Please, see it, I hope it's alright. The text: Overview FreeIPA is currently missing any temporal settings

[Freeipa-devel] [PATCH 0226] Use user specified NTP servers during initial synchronization

https://fedorahosted.org/freeipa/ticket/4983 Patch attached. -- Martin Basti From b17b9342cddc5d0f734101eb4bcaf653f8b7a814 Mon Sep 17 00:00:00 2001 From: Martin Basti mba...@redhat.com Date: Wed, 15 Apr 2015 15:06:45 +0200 Subject: [PATCH] ipa client: use NTP servers specified by user NTP

Re: [Freeipa-devel] [PATCHES 0015-0017] consolidation of various Kerberos auth methods in FreeIPA code

On 04/13/2015 02:16 PM, Martin Babinsky wrote: On 04/09/2015 03:38 PM, Jan Cholasta wrote: Some comments: Patch 15: 1) The functions should be as similar as possible: a) kinit_password() should have a 'ccache_path' argument instead of passing the path in KRB5CCNAME in the 'env'

[Freeipa-devel] [PATCHES 0224-0225] Use NTP servers detected from SRV records in ntp configuration

https://fedorahosted.org/freeipa/ticket/4981 These patches keep usage of IPA server address as NTP server in NTP configuration on clients, in case that no NTP servers were specified by user, and no NTP servers were resolved from SRV records. This will ensure backward compatibility, as IPA

Re: [Freeipa-devel] [PATCH 0029] suppress errors arising from deleting non-existent files during client uninstall

On 04/14/2015 04:24 PM, Martin Basti wrote: On 14/04/15 16:12, Martin Basti wrote: On 14/04/15 14:25, Martin Babinsky wrote: This patch addresses https://fedorahosted.org/freeipa/ticket/4966 The noise during rollback/uninstall is caused mainly by unsuccessful attempts to remove files that do

[Freeipa-devel] [PATCHES 0227-0229] Server upgrade: introduce ipa-server-upgrade command

https://fedorahosted.org/freeipa/ticket/4904 Patches attached. Also ipa-upgradeconfig part is called as a subprocess. This will be removed after installer modifications. This patch may cause temporal upgrade issues (corner cases), until installer part will be finished. If somebody will be

Re: [Freeipa-devel] [PATCH] 0004 User life cycle: support of MODRDN to a new superior

On 04/14/2015 10:39 AM, Jan Cholasta wrote: Dne 12.4.2015 v 18:51 thierry bordaz napsal(a): ... Please wrap long lines: new_dn = DN((self.obj.primary_key.name, entry_attrs[self.obj.primary_key.name]), *entry_attrs.dn[1:])

[Freeipa-devel] [PATCH] Re: Fix password changes via kadmin

Bump On Sun, 2015-04-05 at 18:53 -0400, Simo Sorce wrote: Fix for bug 4914. I've tested it locally and seem to do exactly what is needed. I couldn't detect any side effects, except that if you use kadmin to get a randomized password for a service then you'll get a key for all supported

Re: [Freeipa-devel] Splitting out ipaldap

Dne 14.4.2015 v 19:21 Petr Viktorin napsal(a): On 04/14/2015 06:18 PM, Jan Cholasta wrote: Dne 14.4.2015 v 17:50 Petr Viktorin napsal(a): On 04/14/2015 05:22 PM, Jan Cholasta wrote: Hi, Dne 14.4.2015 v 16:38 Petr Viktorin napsal(a): Hello! As some of you know, I'm looking to help porting

Re: [Freeipa-devel] [PATCH 0027] do not install CA on replica during integration test if setup_ca=False

On 04/14/2015 03:26 PM, Milan Kubik wrote: On 04/08/2015 08:44 AM, Martin Babinsky wrote: I have discovered another little bug in the integration test suite. Attaching a patch that fixes it. Hello, thanks for the patch. I hereby invoke the One Liner rule. Cheers, Milan