On Mon, Feb 21, 2011 at 02:04:52PM -0500, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/21/2011 11:45 AM, Stephen Gallagher wrote:
On 02/21/2011 11:34 AM, Stephen Gallagher wrote:
It is possible to set up FreeIPA servers where the Kerberos realm
differs
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/22/2011 06:13 AM, Sumit Bose wrote:
On Mon, Feb 21, 2011 at 02:04:52PM -0500, Stephen Gallagher wrote:
Un-withdrawing this patch (re-attaching for posterity).
I thought we were not honoring krb5_realm elsewhere, because we were
just doing
On Tue, Feb 22, 2011 at 08:02:56AM -0500, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/22/2011 06:13 AM, Sumit Bose wrote:
On Mon, Feb 21, 2011 at 02:04:52PM -0500, Stephen Gallagher wrote:
Un-withdrawing this patch (re-attaching for posterity).
I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/22/2011 12:10 PM, Sumit Bose wrote:
Sorry, I just realized that my testing was flawed. You access
options-id-basic in ipa_service_init() before it is initialized by
ipa_get_id_options().
Add krb5_realm to the basic IPA options
Previously,
On Tue, Feb 22, 2011 at 12:44:53PM -0500, Stephen Gallagher wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/22/2011 12:10 PM, Sumit Bose wrote:
Sorry, I just realized that my testing was flawed. You access
options-id-basic in ipa_service_init() before it is initialized by
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/22/2011 03:17 PM, Sumit Bose wrote:
On Tue, Feb 22, 2011 at 12:44:53PM -0500, Stephen Gallagher wrote:
On 02/22/2011 12:10 PM, Sumit Bose wrote:
Sorry, I just realized that my testing was flawed. You access
options-id-basic in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It is possible to set up FreeIPA servers where the Kerberos realm
differs from the IPA domain name. We need to allow setting the
krb5_realm explicitly to handle this.
Fixes https://bugzilla.redhat.com/show_bug.cgi?id=679082
- --
Stephen Gallagher
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/21/2011 11:34 AM, Stephen Gallagher wrote:
It is possible to set up FreeIPA servers where the Kerberos realm
differs from the IPA domain name. We need to allow setting the
krb5_realm explicitly to handle this.
Fixes
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 02/21/2011 11:45 AM, Stephen Gallagher wrote:
On 02/21/2011 11:34 AM, Stephen Gallagher wrote:
It is possible to set up FreeIPA servers where the Kerberos realm
differs from the IPA domain name. We need to allow setting the
krb5_realm