diff options
| author | Ana Krivokapic <akrivoka@redhat.com> | 2013-05-15 11:22:41 +0200 |
|---|---|---|
| committer | Alexander Bokovoy <abokovoy@redhat.com> | 2013-07-11 12:39:29 +0300 |
| commit | c1e9b6fa1d3b334e6331c00158bf8e71926cd658 (patch) | |
| tree | a172bcaacaa3591402dc741c8e3ffbdd44aaee6a /install/share/70ipaotp.ldif | |
| parent | e4437a3e7ffcb547a00a70614804dc35fefd630e (diff) | |
| download | freeipa-c1e9b6fa1d3b334e6331c00158bf8e71926cd658.tar.gz freeipa-c1e9b6fa1d3b334e6331c00158bf8e71926cd658.tar.xz freeipa-c1e9b6fa1d3b334e6331c00158bf8e71926cd658.zip | |
Make sure replication works after DM password is changed
Replica information file contains the file `cacert.p12` which is protected by
the Directory Manager password of the initial IPA server installation. The DM
password of the initial installation is also used for the PKI admin user
password.
If the DM password is changed after the IPA server installation, the replication
fails.
To prevent this failure, add the following steps to ipa-replica-prepare:
1. Regenerate the `cacert.p12` file and protect it with the current DM password
2. Update the password of the PKI admin user with the current DM password
https://fedorahosted.org/freeipa/ticket/3594
Diffstat (limited to 'install/share/70ipaotp.ldif')
0 files changed, 0 insertions, 0 deletions