[Freeipa-devel] [PATCHES 529-530] ca install: use host credentials in domain level 1
Jan Cholasta
jcholast at redhat.com
Mon Dec 14 06:53:47 UTC 2015
On 11.12.2015 17:24, Martin Basti wrote:
>
>
> On 11.12.2015 15:00, Jan Cholasta wrote:
>> On 10.12.2015 09:51, Jan Cholasta wrote:
>>> Hi,
>>>
>>> the attached patches fix <https://fedorahosted.org/freeipa/ticket/5399>.
>>>
>>> My patches 523-525 are required for this:
>>> <https://www.redhat.com/archives/freeipa-devel/2015-December/msg00312.html>.
>>>
>>>
>>>
>>> Honza
>>
>> Rebased patches attached.
>>
> Patch works for me, but can you provide explanations (and update commit
> message) why the ACI change is needed:
>
> * why it is moved three ACIs from 'cn="$SUFFIX",cn=mapping
> tree,cn=config' to 'cn=mapping tree,cn=config'
So that they apply to all replication agreements.
> * why you removed completely 'dn: cn=o\3Dipaca,cn=mapping tree,cn=config'
I didn't, they were moved to cn=mapping tree,cn=config as well.
Updated patches attached.
--
Jan Cholasta
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-jcholast-529.2-aci-merge-domain-and-CA-suffix-replication-agreement.patch
Type: text/x-patch
Size: 5967 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20151214/d61845d3/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-jcholast-530.2-ca-install-use-host-credentials-in-domain-level-1.patch
Type: text/x-patch
Size: 4418 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20151214/d61845d3/attachment-0001.bin>
More information about the Freeipa-devel
mailing list