[Freeipa-devel] [PATCHES] IPA to DS migration.
Pavel Zuna
pzuna at redhat.com
Tue Jan 12 18:38:50 UTC 2010
Ok, here's the latest version of IPA to DS migration "suite".
It includes the following:
- A fix for a name collision in textui, Jason's big patch added a second method
named print_entry. Nobody noticed there was one already.
- Patch to the ipa-pwd-extop plugin to allow adding entries with pre-hashed
password if migration mode is enabled.
- BIND pre-operation plugin to generate Kerberos keys on simple BIND's if missing.
- Migration plugin.
- Option in config plugin to enable/disable migration mode.
- Password migration page.
what has changed since the last version:
- LDAP backend is used to connect to DS, no more low level python-ldap calls.
- The plugin checks if migration is enabled and gives direction on how to enable it.
- The plugin can now be extended to support other objects than just users and
groups. You just need to create an LDAPObject and add it's name along with a
search filter (to find the objects in DS) and optionaly callbacks to handle
special cases. There's some inline documentation.
- LDAP URI validation.
- Better error messages.
- Fixed typos.
The migration won't be easy to test, so tomorrow I'll setup 2 VMs on the blades.
One with IPA + migration "suite" and one with DS along with some scripts to
generate objects that I used for testing.
Using the migration plugin is really easy, you just point it to the DS server
and enter the directory manager password.
Pavel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Temporary-fix-for-name-collision-of-textui.print_ent.patch
Type: application/mbox
Size: 1955 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100112/00621805/attachment.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0002-Allow-adding-entries-with-pre-hashed-passwords-but.patch
Type: application/mbox
Size: 2196 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100112/00621805/attachment-0001.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0003-Add-BIND-pre-op-for-DS-IPA-password-migration-to-ip.patch
Type: application/mbox
Size: 16390 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100112/00621805/attachment-0002.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0004-Add-enable-migration-option-in-config-plugin.patch
Type: application/mbox
Size: 2235 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100112/00621805/attachment-0003.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0005-Add-DS-migration-plugin-and-password-migration-page.patch
Type: application/mbox
Size: 24262 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100112/00621805/attachment-0004.mbox>
More information about the Freeipa-devel
mailing list