diff options
| author | Rob Crittenden <rcritten@redhat.com> | 2013-04-30 14:35:19 -0400 |
|---|---|---|
| committer | Rob Crittenden <rcritten@redhat.com> | 2013-05-02 10:46:34 -0400 |
| commit | 77cfe8e221a85e554c78973f058d152996c09e5a (patch) | |
| tree | 23085df0f07aa23bb35f4d409f5dcca6f84d75c7 | |
| parent | 47f701cde394e74442410307623ce25314319047 (diff) | |
| download | freeipa.git-77cfe8e221a85e554c78973f058d152996c09e5a.tar.gz freeipa.git-77cfe8e221a85e554c78973f058d152996c09e5a.tar.xz freeipa.git-77cfe8e221a85e554c78973f058d152996c09e5a.zip | |
Drop uniqueMember mapping with nss-pam-ldapd.
nss-pam-ldapd in 0.8.4 changed the default to map uniqueMember to
member so it is no longer needed in the config file, and in fact
causes an error to be raised.
Add a Conflicts on older versions.
https://fedorahosted.org/freeipa/ticket/3589
| -rw-r--r-- | freeipa.spec.in | 9 | ||||
| -rwxr-xr-x | ipa-client/ipa-install/ipa-client-install | 1 |
2 files changed, 9 insertions, 1 deletions
diff --git a/freeipa.spec.in b/freeipa.spec.in index d347997a..a601547b 100644 --- a/freeipa.spec.in +++ b/freeipa.spec.in @@ -140,6 +140,10 @@ Conflicts: bind-dyndb-ldap < 1.1.0-0.12.rc1 %endif Conflicts: bind < 9.8.2-0.4.rc2 +# Versions of nss-pam-ldapd < 0.8.4 require a mapping from uniqueMember to +# member. +Conflicts: nss-pam-ldapd < 0.8.4 + # mod_proxy provides a single API to communicate over SSL. If mod_ssl # is even loaded into Apache then it grabs this interface. Conflicts: mod_ssl @@ -800,6 +804,11 @@ fi %ghost %attr(0644,root,apache) %config(noreplace) %{_sysconfdir}/ipa/ca.crt %changelog +* Tue Apr 30 2013 Rob Crittenden <rcritten@redhat.com> - 3.1.3-3 +- Add Conflicts on nss-pam-ldapd < 0.8.4. The mapping from uniqueMember to + member is now done automatically and having it in the config file raises + an error. + * Tue Apr 30 2013 Jan Cholasta <jcholast@redhat.com> - 3.1.3-2 - Add triggerin scriptlet to update sshd_config on openssh-server update diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install index 1d2eb50e..d5dde185 100755 --- a/ipa-client/ipa-install/ipa-client-install +++ b/ipa-client/ipa-install/ipa-client-install @@ -762,7 +762,6 @@ def configure_nslcd_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, {'name':'empty', 'type':'empty'}, {'name':'base passwd', 'type':'option', 'value':str(DN(('cn', 'users'), ('cn', 'accounts'), cli_basedn))}, {'name':'base group', 'type':'option', 'value':str(DN(('cn', 'groups'), ('cn', 'accounts'), cli_basedn))}, - {'name':'map group', 'type':'option', 'value':'uniqueMember member'}, {'name':'timelimit', 'type':'option', 'value':'15'}, {'name':'empty', 'type':'empty'}] if not dnsok or options.force or options.on_master: |