From 04bc564e7377cfddffa7f58f23211b2dd17d990e Mon Sep 17 00:00:00 2001
From: Martin Kosek <mkosek@redhat.com>
Date: Wed, 15 Jun 2011 13:41:41 +0200
Subject: Missing krbprincipalname when uid is not set

When user_add command is executed without uid parameter filled, user
account is created without 'krbprincipalname' attribute. This renders
the user account unusable.

https://fedorahosted.org/freeipa/ticket/1279
---
 ipalib/plugins/user.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ipalib/plugins/user.py b/ipalib/plugins/user.py
index 03766a381..de1aa33f3 100644
--- a/ipalib/plugins/user.py
+++ b/ipalib/plugins/user.py
@@ -347,6 +347,7 @@ class user_add(LDAPCreate):
             home_dir = home_dir.replace('//', '/').rstrip('/')
             entry_attrs['homedirectory'] = home_dir
         entry_attrs.setdefault('krbpwdpolicyreference', 'cn=global_policy,cn=%s,cn=kerberos,%s' % (api.env.realm, api.env.basedn))
+        entry_attrs.setdefault('krbprincipalname', '%s@%s' % (entry_attrs['uid'], api.env.realm))
 
         if 'gidnumber' not in entry_attrs:
             # gidNumber wasn't specified explicity, find out what it should be
-- 
cgit