[Freeipa-users] Aiisues to wathc out fro / anticipate when upgrading RHEL6.3 and IPA 2 to 6.4 and IPA 3
Jakub Hrozek
jhrozek at redhat.com
Tue Jan 8 20:55:08 UTC 2013
On Tue, Jan 08, 2013 at 11:49:11AM -0900, Erinn Looney-Triggs wrote:
> On 01/08/13 11:44, Rob Crittenden wrote:
> > Simo Sorce wrote:
> >> On Tue, 2013-01-08 at 19:31 +0000, Steven Jones wrote:
> >>> HI,
> >>>
> >>> I assume RHEL 6.4 is GA shortly just how straigh forward is the
> >>> upgrade from one IPA version to another please?
> >>> regards
> >>
> >> Should just require an rpm upgrade and a restart and nothing else.
> >>
> >> Simo.
> >>
> >
> > If you have multiple servers you'll want to upgrade them one at a time
> > in a short period (days, not weeks).
> >
> > rob
> >
> > _______________________________________________
> > Freeipa-users mailing list
> > Freeipa-users at redhat.com
> > https://www.redhat.com/mailman/listinfo/freeipa-users
>
> Is this the release where SELinux mapping in IPA actually starts working?
>
Yes (famous last words..)
> If so that is definitely something to watch out for (I realize this is
> more of an SSSD thing, but still). If you aren't careful and you have
> your users mapped to something like guest_u, well the upgrade can be
> very inconvenient for them.
>
> -Erinn
I realize that the SELinux mapping was very bad for users and I'm very
sorry I let it through. The SELinux support was pretty much completely
rewritten in 6.4, there are still things I'd like to improve but
functionality-wise, I closed the last known SELinux bug today.
More information about the Freeipa-users
mailing list