[Freeipa-devel] [PATCH] 468 don't run through pre-bind code on enrollment
Rob Crittenden
rcritten at redhat.com
Fri Jun 11 20:16:32 UTC 2010
Don't try to convert a host's password into a keytab.
The migration plugin uses a pre-op function to automatically create
kerberos credentials when binding using a password.
The problem is that we do a simple bind when doing password-base host
enrollment. This was causing krbPasswordExpiration to be set which isn't
what we want for hosts. They really shouldn't go through this code at all.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-468-enroll.patch
Type: application/mbox
Size: 1885 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100611/0f389c11/attachment.mbox>
More information about the Freeipa-devel
mailing list