[Freeipa-devel] FreeIPA OTP End-to-End
Simo Sorce
simo at redhat.com
Mon Dec 23 16:30:00 UTC 2013
On Mon, 2013-12-23 at 11:07 -0500, Alexander Bokovoy wrote:
>
>
> > > What I would like to see is either automated armouring or use of fully
> > > anonymous principal for armouring.
> >
> > Automated canont be done if you are a regular user unless PKINIT is
> > configured on the KDC. Unfortunately although I did 90% of the work to
> > enable pkinit by default years ago, we never merged it in because we
> > cannot yet generate the required profile to release the certificate to
> > the KDC.
> I'd say making it complete is a prerequisite for real use of our OTP.
I agree.
Simo.
> > > Additionally, FreeOTP QR-code capture seems to treat Galaxy S4 mini's
> > > camera wrongly,
> > > I see the viewfinder mirrored -- up is down and left is right. This makes
> > > almost impossible
> > > to focus on the QR code in web UI.
> >
> > Time to open a bug on https://fedorahosted.org/freeotp :-)
> Done.
TY.
simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list