freeipa.git/install/tools/ipa-server-install, branch navigation Unnamed repository; edit this file 'description' to name the repository. Forbid reinstallation in ipa-client-install 2011-04-29T07:28:37+00:00 Martin Kosek mkosek@redhat.com 2011-04-27T14:09:43+00:00 2e99c60c8b21723f86f86bedf1c37c51789f7bc8 The --force option may be misused to reinstall an existing IPA client. This is not supported and may lead to unexpected errors. When required, the cleanest way to re-install IPA client is to run uninstall and then install again. This patch also includes few cosmetic changes in messages to user to provide more consistent user experience with the script. https://fedorahosted.org/freeipa/ticket/1117 
The --force option may be misused to reinstall an existing IPA
client. This is not supported and may lead to unexpected errors.
When required, the cleanest way to re-install IPA client is to
run uninstall and then install again.

This patch also includes few cosmetic changes in messages to user
to provide more consistent user experience with the script.

https://fedorahosted.org/freeipa/ticket/1117
Ensure that the zonemgr passed to the installer conforms to IA5String. 2011-04-26T11:11:56+00:00 Rob Crittenden rcritten@redhat.com 2011-04-22T21:18:57+00:00 6f7984a532057fa173b6a645e5eaf525066edd1a ticket 1164 
ticket 1164
Fix lint false positives. 2011-04-13T13:58:45+00:00 Jan Cholasta jcholast@redhat.com 2011-04-07T14:53:52+00:00 1ac3ed2c271accc0776a3cc34fbe607acf62da17 






Fix typo in ipa-server-install.
2011-04-08T07:27:01+00:00

Jan Cholasta
jcholast@redhat.com

2011-04-07T15:26:15+00:00

df8120702ae01104acaeb3d6079bf44b2794ee57












Fix SELinux errors caused by enabling TLS on dogtag 389-ds instance.
2011-03-15T18:09:57+00:00

Rob Crittenden
rcritten@redhat.com

2011-03-14T20:27:19+00:00

861d1bbdca4793fb45fb233d236d3793cc23da36

This fixes 2 AVCS:

* One because we are enabling port 7390 because an SSL port must be
  defined to use TLS On 7389.
* We were symlinking to the main IPA 389-ds NSS certificate databsae.
  Instead generate a separate NSS database and certificate and have
  certmonger track it separately

I also noticed some variable inconsistency in cainstance.py. Everywhere
else we use self.fqdn and that was using self.host_name. I found it
confusing so I fixed it.

ticket 1085





This fixes 2 AVCS:

* One because we are enabling port 7390 because an SSL port must be
  defined to use TLS On 7389.
* We were symlinking to the main IPA 389-ds NSS certificate databsae.
  Instead generate a separate NSS database and certificate and have
  certmonger track it separately

I also noticed some variable inconsistency in cainstance.py. Everywhere
else we use self.fqdn and that was using self.host_name. I found it
confusing so I fixed it.

ticket 1085







Use TLS for dogtag replication agreements.
2011-03-10T14:57:36+00:00

Rob Crittenden
rcritten@redhat.com

2011-03-10T05:06:15+00:00

9dfb0f05b03176dd8478b56ce684c9a2f4f07b0e

Configure the dogtag 389-ds instance with SSL so we can enable TLS
for the dogtag replication agreements. The NSS database we use is a
symbolic link to the IPA 389-ds instance.

ticket 1060





Configure the dogtag 389-ds instance with SSL so we can enable TLS
for the dogtag replication agreements. The NSS database we use is a
symbolic link to the IPA 389-ds instance.

ticket 1060







chkconfig the ipa service off when it is uninstalled.
2011-03-08T15:23:10+00:00

Rob Crittenden
rcritten@redhat.com

2011-03-07T21:29:08+00:00

8c50ea3da319a43bb9a7627b598566f3987be5f5

ticket 1056





ticket 1056







Skip DNS validation checks if we're setting up DNS in ipa-server-install.
2011-03-04T16:05:40+00:00

Rob Crittenden
rcritten@redhat.com

2011-03-03T21:03:44+00:00

c0ecdd1395e457592407c2d4d622a2758896d8ca

If we're going to be authoritative ourselves don't bother with what
other DNS servers think.

ticket 1036





If we're going to be authoritative ourselves don't bother with what
other DNS servers think.

ticket 1036







Use ldapi: instead of unsecured ldap: in ipa core tools.
2011-03-03T19:04:34+00:00

Pavel Zuna
pzuna@redhat.com

2011-02-15T19:11:27+00:00

64575a411b27dde7919406fdaf5bdec07c6645f3

The patch also corrects exception handling in some of the tools.

Fix #874





The patch also corrects exception handling in some of the tools.

Fix #874







Inconsistent sysrestore file handling by IPA server installer
2011-03-03T16:02:02+00:00

Martin Kosek
mkosek@redhat.com

2011-03-01T13:17:03+00:00

f785af4efea088466f8ec2259c79640b9f94e542

IPA server/replica uninstallation may fail when it tries to restore
a Directory server configuration file in sysrestore directory, which
was already restored before.

The problem is in Directory Server uninstaller which uses and modifies
its own image of sysrestore directory state instead of using the
common uninstaller image.

https://fedorahosted.org/freeipa/ticket/1026





IPA server/replica uninstallation may fail when it tries to restore
a Directory server configuration file in sysrestore directory, which
was already restored before.

The problem is in Directory Server uninstaller which uses and modifies
its own image of sysrestore directory state instead of using the
common uninstaller image.

https://fedorahosted.org/freeipa/ticket/1026