[Freeipa-devel] [PATCH] Restart dirsrv as part of ipa-adtrust-install

Alexander Bokovoy abokovoy at redhat.com
Thu Jun 21 15:29:45 UTC 2012 

We should restart Directory Server when performing AD trusts
configuration to enable new CLDAP plugin and force KDC to notice MS PAC
is now available.  Previously we only restarted KDC but if dirsrv is
restarted, KDC will notice its socket disappeared and will refresh
itself.

http://fedorahosted.org/freeipa/ticket/2862

-- 
/ Alexander Bokovoy
-------------- next part --------------
>From 9c982e28ce08d1d6847276e3d39496089edf6b58 Mon Sep 17 00:00:00 2001
From: Alexander Bokovoy <abokovoy at redhat.com>
Date: Thu, 21 Jun 2012 16:04:10 +0300
Subject: [PATCH 2/3] restart dirsrv as part of ipa-adtrust-install

We should restart Directory Server when performing AD trusts configuration
to enable new CLDAP plugin and force KDC to notice MS PAC is now available.
Previously we only restarted KDC but if dirsrv is restarted, KDC will notice
its socket disappeared and will refresh itself

http://fedorahosted.org/freeipa/ticket/2862
---
 ipaserver/install/adtrustinstance.py |    8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/ipaserver/install/adtrustinstance.py b/ipaserver/install/adtrustinstance.py
index 5f74054316ed714cc5cab004b497033dc4b47adf..4d417c8d1d15e4e7a799e871f886232cbf888331 100644
--- a/ipaserver/install/adtrustinstance.py
+++ b/ipaserver/install/adtrustinstance.py
@@ -364,9 +364,9 @@ class ADTRUSTInstance(service.Service):
         except:
             pass
 
-    def __restart_kdc(self):
+    def __restart_dirsrv(self):
         try:
-            ipaservices.knownservices.krb5kdc.restart()
+            ipaservices.knownservices.dirsrv.restart()
         except:
             pass
 
@@ -434,8 +434,8 @@ class ADTRUSTInstance(service.Service):
         if not self.no_msdcs:
             self.step("adding special DNS service records", \
                       self.__add_dns_service_records)
-        self.step("restarting KDC to take MS PAC changes into account", \
-                  self.__restart_kdc)
+        self.step("restarting Directory Server to take MS PAC and CLDAP changes into account", \
+                  self.__restart_dirsrv)
         self.step("setting SELinux booleans", \
                   self.__configure_selinux_for_smbd)
         self.step("starting smbd", self.__start)
-- 
1.7.10.2

More information about the Freeipa-devel mailing list