[Freeipa-devel] Multitenancy in FreeIPA
Rob Crittenden
rcritten at redhat.com
Fri Dec 16 03:01:12 UTC 2011
Dmitri Pal wrote:
> On 12/15/2011 12:24 PM, Adam Young wrote:
>> When updating IPA, schema changes need to be applied to each of the
>> the tenant trees.
>> API
>> Each of the RPCs need to allow an optional parameter tenant. Members
>> of the original domain with an approapriate Permission will be able to
>> perform operations inside the tenant specified.
> Why you need this? The principal of the authenticated user will give you
> the tenant domain info.
>
Do we want the landlord to be able to manage tenants? Will the landlord
need a special account in each tenant?
rob
More information about the Freeipa-devel
mailing list