[Freeipa-devel] [PATCH]: Add special passSyncManagers support
Simo Sorce
ssorce at redhat.com
Wed Nov 12 18:30:16 UTC 2008
On Wed, 2008-11-12 at 13:28 -0500, Simo Sorce wrote:
> On Wed, 2008-11-12 at 09:58 -0500, Simo Sorce wrote:
> > This patch adds support to read a list of DNs from the plugin
> > configuration entry. These DNs are considered superusers from the PoV of
> > password changes, so no policies nor immediate expiration are applied to
> > the password being set.
> >
> > This functionality is needed to allow a passsycn plugin on an AD server
> > to synchronize the password to IPA.
> >
> > The patch also cleans up a bit the ipapwd_start function.
>
> I forgot to test this with ldapmodify and of course as soon as I did
> (thanks Rob) I relalized I forgot to add checks for passsync managers to
> mod preop and add preop.
>
> This is a rebase patch that adds the missing checks.
Meh, with the patch this time :/
--
Simo Sorce * Red Hat, Inc * New York
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Make-the-list-of-users-that-can-skip-passwrod-polici.patch
Type: application/mbox
Size: 10761 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20081112/b6bbd237/attachment.mbox>
More information about the Freeipa-devel
mailing list