diff options
author | Jan Cholasta <jcholast@redhat.com> | 2013-06-03 10:20:52 +0200 |
---|---|---|
committer | Petr Viktorin <pviktori@redhat.com> | 2013-06-12 12:59:54 +0200 |
commit | 5ae8515c20d1963a371210e47982beec5dd6ea00 (patch) | |
tree | ff3e91ae6c9a54f80368441d0e4a32a6d975ad44 /install/tools/ipa-replica-install | |
parent | 2ccadf4726d580d12043070180c3c85b58b5db44 (diff) | |
download | freeipa-5ae8515c20d1963a371210e47982beec5dd6ea00.tar.gz freeipa-5ae8515c20d1963a371210e47982beec5dd6ea00.tar.xz freeipa-5ae8515c20d1963a371210e47982beec5dd6ea00.zip |
Do not allow installing CA replicas in CA-less setup.
https://fedorahosted.org/freeipa/ticket/3673
https://fedorahosted.org/freeipa/ticket/3674
Diffstat (limited to 'install/tools/ipa-replica-install')
-rwxr-xr-x | install/tools/ipa-replica-install | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/install/tools/ipa-replica-install b/install/tools/ipa-replica-install index 209ca850f..5b3a88f6a 100755 --- a/install/tools/ipa-replica-install +++ b/install/tools/ipa-replica-install @@ -513,6 +513,10 @@ def main(): config.dir = dir config.setup_ca = options.setup_ca + if config.setup_ca and ipautil.file_exists(config.dir + "/dscert.p12"): + print 'CA cannot be installed in CA-less setup.' + sys.exit(1) + installutils.verify_fqdn(config.master_host_name, options.no_host_dns) portfile = config.dir + "/dogtag_directory_port.txt" |