diff options
| author | Martin Kosek <mkosek@redhat.com> | 2013-10-11 09:40:45 +0200 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2013-10-11 10:08:21 +0200 |
| commit | dfa135e6069f9cb7f158d4540b530b137887932f (patch) | |
| tree | 2026bf9dda73994b0d035b48efbb1440df984155 | |
| parent | 524a1a856739dd695e701ac33b67c8e758ac42c4 (diff) | |
| download | freeipa-dfa135e6069f9cb7f158d4540b530b137887932f.tar.gz freeipa-dfa135e6069f9cb7f158d4540b530b137887932f.tar.xz freeipa-dfa135e6069f9cb7f158d4540b530b137887932f.zip | |
Winsync re-initialize should not run memberOf fixup task
Change re-initialize command to consider memberOf fixup task only
for non-winsync replication agreements.
https://fedorahosted.org/freeipa/ticket/3854
| -rwxr-xr-x | install/tools/ipa-replica-manage | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/install/tools/ipa-replica-manage b/install/tools/ipa-replica-manage index 45b915c66..8e0948ec4 100755 --- a/install/tools/ipa-replica-manage +++ b/install/tools/ipa-replica-manage @@ -862,11 +862,12 @@ def re_initialize(realm, thishost, fromhost, dirman_passwd, nolookup=False): repl.initialize_replication(agreement.dn, repl.conn) repl.wait_for_repl_init(repl.conn, agreement.dn) - # If the agreement doesn't have nsDS5ReplicatedAttributeListTotal it means - # we did not replicate memberOf, do so now. - if not agreement.single_value('nsDS5ReplicatedAttributeListTotal', None): - ds = dsinstance.DsInstance(realm_name = realm, dm_password = dirman_passwd) - ds.init_memberof() + # If the agreement doesn't have nsDS5ReplicatedAttributeListTotal it means + # we did not replicate memberOf, do so now. + if not agreement.single_value('nsDS5ReplicatedAttributeListTotal', None): + ds = dsinstance.DsInstance(realm_name = realm, dm_password = dirman_passwd) + ds.ldapi = os.getegid() == 0 + ds.init_memberof() def force_sync(realm, thishost, fromhost, dirman_passwd, nolookup=False): |