[Freeipa-devel] [PATCH]: Add special passSyncManagers support
Simo Sorce
ssorce at redhat.com
Wed Nov 12 18:55:31 UTC 2008
On Wed, 2008-11-12 at 13:52 -0500, Rob Crittenden wrote:
> Simo Sorce wrote:
> > On Wed, 2008-11-12 at 13:28 -0500, Simo Sorce wrote:
> >> On Wed, 2008-11-12 at 09:58 -0500, Simo Sorce wrote:
> >>> This patch adds support to read a list of DNs from the plugin
> >>> configuration entry. These DNs are considered superusers from the PoV of
> >>> password changes, so no policies nor immediate expiration are applied to
> >>> the password being set.
> >>>
> >>> This functionality is needed to allow a passsycn plugin on an AD server
> >>> to synchronize the password to IPA.
> >>>
> >>> The patch also cleans up a bit the ipapwd_start function.
> >> I forgot to test this with ldapmodify and of course as soon as I did
> >> (thanks Rob) I relalized I forgot to add checks for passsync managers to
> >> mod preop and add preop.
> >>
> >> This is a rebase patch that adds the missing checks.
> >
> > Meh, with the patch this time :/
> >
>
> It works for me. Ack.
Pushed to ipa-1-2 and master
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list