summaryrefslogtreecommitdiffstats
path: root/ipa-client/ipa-install/ipa-client-install
diff options
context:
space:
mode:
Diffstat (limited to 'ipa-client/ipa-install/ipa-client-install')
-rwxr-xr-xipa-client/ipa-install/ipa-client-install29
1 files changed, 17 insertions, 12 deletions
diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install
index 6ad001be8..75a1b3d1f 100755
--- a/ipa-client/ipa-install/ipa-client-install
+++ b/ipa-client/ipa-install/ipa-client-install
@@ -31,7 +31,7 @@ try:
from ipaclient import ipadiscovery
import ipaclient.ipachangeconf
import ipaclient.ntpconf
- from ipapython.ipautil import run, user_input, CalledProcessError, file_exists, package_installed_name
+ from ipapython.ipautil import run, user_input, CalledProcessError, file_exists
from ipapython import ipautil
from ipapython import dnsclient
from ipapython import sysrestore
@@ -336,6 +336,7 @@ def configure_ldap_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, d
opts.append({'name':'empty', 'type':'empty'})
+ ret = (0, 'LDAP', '')
# Depending on the release and distribution this may exist in any
# number of different file names, update what we find
for filename in ['/etc/ldap.conf', '/etc/nss_ldap.conf', '/etc/libnss-ldap.conf', '/etc/pam_ldap.conf']:
@@ -343,11 +344,12 @@ def configure_ldap_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, d
try:
fstore.backup_file(filename)
ldapconf.newConf(filename, opts)
+ ret = (0, 'LDAP', filename)
except Exception, e:
print "Creation of %s: %s" % (filename, str(e))
- return 1
+ return (1, 'LDAP', filename)
- return 0
+ return ret
def configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, dnsok, options):
nslcdconf = ipaclient.ipachangeconf.IPAChangeConf("IPA Installer")
@@ -379,7 +381,7 @@ def configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server,
nslcdconf.newConf('/etc/nslcd.conf', opts)
except Exception, e:
print "Creation of %s: %s" % ('/etc/nslcd.conf', str(e))
- return 1
+ return (1, 'nslcd')
if ipautil.service_is_installed('nslcd'):
try:
@@ -395,7 +397,7 @@ def configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server,
else:
logging.debug("NSLCD daemon is not installed, skip configuration")
- return 0
+ return (0, 'NSLCD', '/etc/nslcd.conf')
def hardcode_ldap_server(cli_server):
"""
@@ -945,7 +947,8 @@ def main():
else:
# this is optional service, just log
- logging.info("NSCD daemon is not installed, skip configuration")
+ if not options.sssd:
+ logging.info("NSCD daemon is not installed, skip configuration")
# Modify nsswitch/pam stack
if options.sssd:
@@ -964,14 +967,17 @@ def main():
run(["/usr/sbin/authconfig", "--enablekrb5", "--update", "--nostart"])
print "Kerberos 5 enabled"
+ (retcode, conf, filename) = (0, 'SSSD', '/etc/sssd.conf')
# Update non-SSSD LDAP configuration after authconfig calls as it would
# change its configuration otherways
if not options.sssd:
- if configure_ldap_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, dnsok, options):
+ (retcode, conf, filename) = configure_ldap_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, dnsok, options)
+ if retcode:
return 1
- if configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, dnsok, options):
+ (retcode, conf, filename) = configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, dnsok, options)
+ if retcode:
return 1
- print "LDAP configured"
+ print "%s configured using configuration file %s" % (conf, filename)
#Check that nss is working properly
if not options.on_master:
@@ -989,9 +995,8 @@ def main():
n = n + 1
if not found:
- package = package_installed_name(["nss-pam-ldapd","nss_ldap"])
- print "Unable to use DNS discovery! Recognized configuration: %s" % (package)
- print "Changing configuration to use hardcoded server name: " +cli_server
+ print "Unable to use DNS discovery! Recognized configuration: %s" % (conf)
+ print "Changing configuration of /etc/ldap.conf to use hardcoded server name: " +cli_server
try:
hardcode_ldap_server(cli_server)