[Freeipa-devel] [PATCH] Initial Radius Work
Simo Sorce
ssorce at redhat.com
Sat Nov 3 19:37:13 UTC 2007
On Sat, 2007-11-03 at 13:59 -0400, John Dennis wrote:
> + # FIXME: ldap_server should be derived, not hardcoded to
> localhost, also should it be a URL?
> + radius.create_instance(realm_name, host_name, 'localhost')
> +
If at all possible, you should let ldap libraries use DNS discovery to
find the ldap server, and not force one on them. this will allow
automatic fallback eventually. Unells we want to tie a radiuserver to
the local master for some other reasons, in which case you must use
gethostname as you need the hostname of the server to get the right
kerberos ticket.
Simo.
More information about the Freeipa-devel
mailing list