diff options
author | Rob Crittenden <rcritten@redhat.com> | 2011-02-17 22:53:53 -0500 |
---|---|---|
committer | Rob Crittenden <rcritten@redhat.com> | 2011-02-18 10:00:03 -0500 |
commit | 7b7160452130a203622a7b0fd30e984add87ed87 (patch) | |
tree | dc9c1aa47bca148126e7fef6a94ecf6e464a9123 /ipaserver | |
parent | b7700ea815222b4de80741ad77b31707051300bd (diff) | |
download | freeipa-7b7160452130a203622a7b0fd30e984add87ed87.tar.gz freeipa-7b7160452130a203622a7b0fd30e984add87ed87.tar.xz freeipa-7b7160452130a203622a7b0fd30e984add87ed87.zip |
Fix NSS initialization errors during ipa-replica-prepare
When enabling replication we make an SSL connection. I think the way
this goes is python-ldap -> openldap -> NSS. It may be a problem in
the openldap SSL client, maybe it isn't calling NSS_Shutdown(). In any
case if we use ldapi instead the problem goes away.
Back out the temporary code to ignore nss_shutdown errors.
ticket 965
Diffstat (limited to 'ipaserver')
-rw-r--r-- | ipaserver/install/replication.py | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ipaserver/install/replication.py b/ipaserver/install/replication.py index 0bf0e218a..81581974a 100644 --- a/ipaserver/install/replication.py +++ b/ipaserver/install/replication.py @@ -60,7 +60,7 @@ def enable_replication_version_checking(hostname, realm, dirman_passwd): enabled then enable it and restart 389-ds. If it is enabled the do nothing. """ - conn = ipaldap.IPAdmin(hostname, port=PORT, cacert=CACERT) + conn = ipaldap.IPAdmin(hostname, realm=realm, ldapi=True) if dirman_passwd: conn.do_simple_bind(bindpw=dirman_passwd) else: |