diff options
| author | Rob Crittenden <rcritten@redhat.com> | 2009-11-24 16:07:44 -0500 |
|---|---|---|
| committer | Jason Gerard DeRose <jderose@redhat.com> | 2009-11-30 18:10:09 -0700 |
| commit | ab1667f3c1607a22c6df49ceba58274347bc5826 (patch) | |
| tree | bc2e6102d3d9cd103d2418ad5372e164e0e7533d /install | |
| parent | 7c2c2d6130648fb6dd7c0e52d802cc6eff39ef95 (diff) | |
| download | freeipa-ab1667f3c1607a22c6df49ceba58274347bc5826.tar.gz freeipa-ab1667f3c1607a22c6df49ceba58274347bc5826.tar.xz freeipa-ab1667f3c1607a22c6df49ceba58274347bc5826.zip | |
Use pyasn1-based PKCS#10 and X509v3 parsers instead of pyOpenSSL.
The pyOpenSSL PKCS#10 parser doesn't support attributes so we can't identify
requests with subject alt names.
Subject alt names are only allowed if:
- the host for the alt name exists in IPA
- if binding as host principal, the host is in the services managedBy attr
Diffstat (limited to 'install')
| -rwxr-xr-x | install/tools/ipa-server-install | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/install/tools/ipa-server-install b/install/tools/ipa-server-install index be525f73d..0b2660f3a 100755 --- a/install/tools/ipa-server-install +++ b/install/tools/ipa-server-install @@ -787,6 +787,10 @@ def main(): service.print_msg("restarting the KDC") krb.restart() + # Restart httpd to pick up the new IPA configuration + service.print_msg("restarting the web server") + http.restart() + # Create a BIND instance bind = bindinstance.BindInstance(fstore, dm_password) bind.setup(host_name, ip_address, realm_name, domain_name, dns_forwarders) |