[Freeipa-devel] [PATCH 0357] trusts: Detect domain clash with IPA domain when adding a AD
Tomas Babej
tbabej at redhat.com
Thu Aug 6 08:55:18 UTC 2015
Hi,
When IPA is deployed in the same domain as AD, trust-add fails since
the names of the local domain and trusted domain ranges is the same
- it's always DOMAIN.NAME_id_range.
When adding a trusted domain, we look for previous ranges for
this domain (which may have been left behind by previous trust
attempts). Since AD and IPA are in the same domain, we find
a local domain range, which does not have a SID.
Detect such domain collisions early and bail out with an appropriate
error message.
https://fedorahosted.org/freeipa/ticket/4549
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-tbabej-0357-trusts-Detect-domain-clash-with-IPA-domain-when-addi.patch
Type: text/x-patch
Size: 1668 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20150806/d59cd4c6/attachment.bin>
More information about the Freeipa-devel
mailing list