[Freeipa-users] Add user principal with admin privilege
Eldo Joseph
jeldo26 at live.com
Fri Jul 18 15:15:04 UTC 2014
So can we have a user have with admin privilege or same as admin
On 18/07/2014 7:04 pm, Martin Kosek <mkosek at redhat.com> wrote:
On 07/18/2014 03:16 PM, Eldo Joseph wrote:
> Hi,
>
> Is it possible to add a user principal with admin privileges.
>
> like kadmin: addprinc -randkey user1/admin at DOMAIN.COM
>
> when ever tried I got this
> "Kerberos database constraints violated"
>
>
> Thanks,
> Eldo
We do not allow adding principals by kadmin on purpose. Kerberos principals of
FreeIPA user/service/host are being added via FreeIPA commands which fills all
required and expected attributes.
We are considering allowing adding external realm principal though, ticket filed:
https://fedorahosted.org/freeipa/ticket/4059
https://bugzilla.redhat.com/show_bug.cgi?id=1035494#c3
HTH,
Martin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140718/00493ea4/attachment.htm>
More information about the Freeipa-users
mailing list