[Touch-packages] [Bug 1817955] Re: Getting new "DN is out of the realm subtree" error on adding principal

I do not think so, but I may not fully understand what "subtree" implies. The realm was initially created with a command equivalent to: kdb5_ldap_util -D cn=admin,dc=example,dc=com create -subtrees dc=example,dc=com -r TEST.EXAMPLE.COM -s -H ldap://ldapserver.example.com with user entries like:

[Touch-packages] [Bug 1817955] [NEW] Getting new "DN is out of the realm subtree" error on adding principal

Public bug reported: Recently applied security update to 14.04.5 LTS kerberos (1.12+dfsg- 2ubuntu5.4), and started getting errors when adding new principals to LDAP. Obfuscated example: kadmin.local -q "ank -x dn=\"uid=testuser,ou=People,dc=example,dc=com\" -pw \"dummypass\" testuser" now