[Freeipa-devel] [freeipa PR#40] do not use trusted forest name to construct domain admin principal (opened)
martbab
freeipa-github-notification at redhat.com
Wed Aug 31 12:18:10 UTC 2016
martbab's pull request #40: "do not use trusted forest name to construct domain admin principal" was opened
PR body:
"""
When `trust-add` is supplied AD domain admin name without realm component, the
code appends the uppercased AD forest root domain name to construct the full
principal. This can cause authentication error, however, when external trust
with non-root domain is requested.
We should instead use the supplied DNS domain name (if valid) as a realm
component.
https://fedorahosted.org/freeipa/ticket/6277
"""
See the full pull-request at https://github.com/freeipa/freeipa/pull/40
... or pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/40/head:pr40
git checkout pr40
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pr-40.patch
Type: text/x-diff
Size: 1367 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20160831/ada624d1/attachment.bin>
More information about the Freeipa-devel
mailing list