[Freeipa-devel] [PATCH] Client install config file parsing/changing
Karl MacMillan
kmacmill at redhat.com
Fri Sep 7 17:37:21 UTC 2007
On Thu, 2007-09-06 at 18:05 -0400, Simo Sorce wrote:
> This patch introduce a much better class to manipulate config files.
> It has been tested with the ldap.conf and krb5.conf files and should
> work
> without any problem with smb.conf as well as other similar config files.
>
> This patch also stop trying changing the ldap.conf and krb5.conf files
> on client installs for now, as previously configured files existing on
> the system may render the authentication/enumeration of users unusable
> if strange directives where found. The original files are backuped. In
> future we may switch back to changing config files, but before doing
> that we need a lot more testing on what options are compatible and which
> are not with our setup.
>
> Right now running ipa-client-install on a client configures it correctly
> (you just need to reboot the system or restart services to be able to
> authenticate with pam_krb5).
> The only gotcha is that until the fixed nss_ldap packages are available
> adding the following line to /etc/ldap.conf is still needed:
> host 1.2.3.4
> ^^^^^^^--IP address of the IPA server
>
Acked and pushed.
Karl
More information about the Freeipa-devel
mailing list