[Freeipa-devel] [PATCH] 055 Set ldap_netgroup_search_base for in ipa-client-install
Jakub Hrozek
jhrozek at redhat.com
Sun Feb 13 17:07:36 UTC 2011
https://fedorahosted.org/freeipa/ticket/932
-------------- next part --------------
>From 82787ce02ada90c17593e96d32faab45efce9a90 Mon Sep 17 00:00:00 2001
From: Jakub Hrozek <jhrozek at redhat.com>
Date: Sat, 12 Feb 2011 11:00:51 +0100
Subject: [PATCH] Set ldap_netgroup_search_base for in ipa-client-install
https://fedorahosted.org/freeipa/ticket/932
---
ipa-client/ipa-install/ipa-client-install | 6 ++++--
1 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install
index 32a9aef..244e63b 100755
--- a/ipa-client/ipa-install/ipa-client-install
+++ b/ipa-client/ipa-install/ipa-client-install
@@ -473,7 +473,7 @@ def configure_certmonger(fstore, subject_base, cli_realm, options):
except:
print "certmonger request for host certificate failed"
-def configure_sssd_conf(fstore, cli_domain, cli_server, options):
+def configure_sssd_conf(fstore, cli_basedn, cli_domain, cli_server, options):
fstore.backup_file("/etc/sssd/sssd.conf")
sssdconfig = SSSDConfig.SSSDConfig()
sssdconfig.new_config()
@@ -495,6 +495,8 @@ def configure_sssd_conf(fstore, cli_domain, cli_server, options):
domain.add_provider('permit', 'access')
domain.set_option('cache_credentials', True)
+ domain.set_option('ldap_netgroup_search_base',
+ "%s,%s" % ('cn=ng,cn=compat', cli_basedn))
domain.set_active(True)
@@ -709,7 +711,7 @@ def main():
print "Created /etc/ipa/default.conf"
if options.sssd:
- if configure_sssd_conf(fstore, cli_domain, cli_server, options):
+ if configure_sssd_conf(fstore, cli_basedn, cli_domain, cli_server, options):
return 1
print "Configured /etc/sssd/sssd.conf"
else:
--
1.7.4
More information about the Freeipa-devel
mailing list