diff options
| author | Martin Kosek <mkosek@redhat.com> | 2013-10-11 09:40:45 +0200 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2013-10-11 10:09:38 +0200 |
| commit | 233d07d030500be4a593c22fef9cd841b7e7a12d (patch) | |
| tree | 2bccf4ee7390e6afc26dd75e0896e54eed3a7cf6 | |
| parent | b73adb72a410fc5669eee25e3670dd7abeeeeb6f (diff) | |
| download | freeipa.git-233d07d030500be4a593c22fef9cd841b7e7a12d.tar.gz freeipa.git-233d07d030500be4a593c22fef9cd841b7e7a12d.tar.xz freeipa.git-233d07d030500be4a593c22fef9cd841b7e7a12d.zip | |
Winsync re-initialize should not run memberOf fixup task
Change re-initialize command to consider memberOf fixup task only
for non-winsync replication agreements.
https://fedorahosted.org/freeipa/ticket/3854
| -rwxr-xr-x | install/tools/ipa-replica-manage | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/install/tools/ipa-replica-manage b/install/tools/ipa-replica-manage index 45b915c6..8e0948ec 100755 --- a/install/tools/ipa-replica-manage +++ b/install/tools/ipa-replica-manage @@ -862,11 +862,12 @@ def re_initialize(realm, thishost, fromhost, dirman_passwd, nolookup=False): repl.initialize_replication(agreement.dn, repl.conn) repl.wait_for_repl_init(repl.conn, agreement.dn) - # If the agreement doesn't have nsDS5ReplicatedAttributeListTotal it means - # we did not replicate memberOf, do so now. - if not agreement.single_value('nsDS5ReplicatedAttributeListTotal', None): - ds = dsinstance.DsInstance(realm_name = realm, dm_password = dirman_passwd) - ds.init_memberof() + # If the agreement doesn't have nsDS5ReplicatedAttributeListTotal it means + # we did not replicate memberOf, do so now. + if not agreement.single_value('nsDS5ReplicatedAttributeListTotal', None): + ds = dsinstance.DsInstance(realm_name = realm, dm_password = dirman_passwd) + ds.ldapi = os.getegid() == 0 + ds.init_memberof() def force_sync(realm, thishost, fromhost, dirman_passwd, nolookup=False): |