[Freeipa-devel] [PATCH] Retrieve keytabs via LDAP
Simo Sorce
ssorce at redhat.com
Fri Dec 21 08:11:36 UTC 2007
On Tue, 2007-12-18 at 17:28 -0500, Simo Sorce wrote:
> On Wed, 2007-12-19 at 08:57 +1100, Andrew Bartlett wrote:
> > On Tue, 2007-12-18 at 11:13 -0500, Simo Sorce wrote:
> > > This patch adds a new extended operation (uses the RH-IPA OID space) to
> > > retrieve keytabs directly from LDAP, simplifying management of keytabs.
> > >
> > > There are still some rough edges but it basically works and can generate
> > > a new keytab on request.
> > >
> > > Provided also an example program to test it, unfortunately python-ldap
> > > does not wrap the extended operations calls so C is the only way for
> > > now.
> >
> > This could be a useful thing to add to Samba4's LDAP server at some
> > point...
>
> Actually I am rewriting this and changing approach, more details later
> (may still be useful for samba4, new approach will also make it easier
> to adapt prolly as it offloads some unnecessary work from the server),
> stay tuned.
I finally have the patch fully working.
Too late now to merge in the changes from my repo revision and the tip,
will send them in tomorrow after some strong coffe :)
Simo.
--
| Simo S Sorce |
| Sr.Soft.Eng. |
| Red Hat, Inc |
| New York, NY |
More information about the Freeipa-devel
mailing list