[Freeipa-devel] [PATCH 0065] Don't allow users to create tokens with a specified ID

[Simo Sorce]

On Mon, 22 Sep 2014 12:58:58 -0400
Simo Sorce <simo at redhat.com> wrote:

> On Mon, 22 Sep 2014 17:42:39 +0200
> thierry bordaz <tbordaz at redhat.com> wrote:
> 
> > RFC 4527
> 
> Thanks a lot Thierry, this is exactly the control I had in mind last
> week. If we could implement it then we could solve any issue where the
> RDN needs to be modified by the ADD operation.

Ha, Rich confirmed on IRC that we do have this control available since
DS 1.3.2

Given this I think this is the best solution as it allows us to use a
simple ACI and no code to solve the problem.

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York