summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMartin Kosek <mkosek@redhat.com>2011-06-15 13:41:41 +0200
committerMartin Kosek <mkosek@redhat.com>2011-06-15 17:21:04 +0200
commit04bc564e7377cfddffa7f58f23211b2dd17d990e (patch)
tree9106046f1ae9d319d84dc504ec6f31a423da5b45
parentcbc5df4536320843f3eed0dc54755bf21922e2c7 (diff)
downloadfreeipa-04bc564e7377cfddffa7f58f23211b2dd17d990e.tar.gz
freeipa-04bc564e7377cfddffa7f58f23211b2dd17d990e.tar.xz
freeipa-04bc564e7377cfddffa7f58f23211b2dd17d990e.zip
Missing krbprincipalname when uid is not set
When user_add command is executed without uid parameter filled, user account is created without 'krbprincipalname' attribute. This renders the user account unusable. https://fedorahosted.org/freeipa/ticket/1279
-rw-r--r--ipalib/plugins/user.py1
1 files changed, 1 insertions, 0 deletions
diff --git a/ipalib/plugins/user.py b/ipalib/plugins/user.py
index 03766a381..de1aa33f3 100644
--- a/ipalib/plugins/user.py
+++ b/ipalib/plugins/user.py
@@ -347,6 +347,7 @@ class user_add(LDAPCreate):
home_dir = home_dir.replace('//', '/').rstrip('/')
entry_attrs['homedirectory'] = home_dir
entry_attrs.setdefault('krbpwdpolicyreference', 'cn=global_policy,cn=%s,cn=kerberos,%s' % (api.env.realm, api.env.basedn))
+ entry_attrs.setdefault('krbprincipalname', '%s@%s' % (entry_attrs['uid'], api.env.realm))
if 'gidnumber' not in entry_attrs:
# gidNumber wasn't specified explicity, find out what it should be