[Freeipa-devel] [PATCH]: Add special passSyncManagers support
Rob Crittenden
rcritten at redhat.com
Wed Nov 12 18:52:37 UTC 2008
Simo Sorce wrote:
> On Wed, 2008-11-12 at 13:28 -0500, Simo Sorce wrote:
>> On Wed, 2008-11-12 at 09:58 -0500, Simo Sorce wrote:
>>> This patch adds support to read a list of DNs from the plugin
>>> configuration entry. These DNs are considered superusers from the PoV of
>>> password changes, so no policies nor immediate expiration are applied to
>>> the password being set.
>>>
>>> This functionality is needed to allow a passsycn plugin on an AD server
>>> to synchronize the password to IPA.
>>>
>>> The patch also cleans up a bit the ipapwd_start function.
>> I forgot to test this with ldapmodify and of course as soon as I did
>> (thanks Rob) I relalized I forgot to add checks for passsync managers to
>> mod preop and add preop.
>>
>> This is a rebase patch that adds the missing checks.
>
> Meh, with the patch this time :/
>
It works for me. Ack.
rob
More information about the Freeipa-devel
mailing list