diff options
author | Simo Sorce <ssorce@redhat.com> | 2011-01-12 10:33:36 -0500 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2011-01-14 14:06:56 -0500 |
commit | cfa23b1c2a421e795095c4b40c21e53d5090dce0 (patch) | |
tree | ad5a779caadc268b29cc5d0a6b0f9351b480ca43 /install | |
parent | a0bfbec19f99d01f59299b02a2f5f2f3a76fc1c3 (diff) | |
download | freeipa.git-cfa23b1c2a421e795095c4b40c21e53d5090dce0.tar.gz freeipa.git-cfa23b1c2a421e795095c4b40c21e53d5090dce0.tar.xz freeipa.git-cfa23b1c2a421e795095c4b40c21e53d5090dce0.zip |
Allow using Kerberos credentials with the 'connect' command
Now that we can setup GSSAPI authenticated replication we are not
tied to use the Directory Manager password to set up replication
agreements.
Fixes: https://fedorahosted.org/freeipa/ticket/644
Diffstat (limited to 'install')
-rw-r--r-- | install/share/replica-acis.ldif | 2 | ||||
-rwxr-xr-x | install/tools/ipa-replica-manage | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/install/share/replica-acis.ldif b/install/share/replica-acis.ldif index 11c78572..2acbd92d 100644 --- a/install/share/replica-acis.ldif +++ b/install/share/replica-acis.ldif @@ -3,7 +3,7 @@ dn: cn="$SUFFIX",cn=mapping tree,cn=config changetype: modify add: aci -aci: (targetattr=*)(targetfilter="(|(objectclass=nsds5replicationagreement)(objectclass=nsDSWindowsReplicationAgreement))")(version 3.0;acl "Add Replication Agreements";allow (add) groupdn = "ldap:///cn=addreplica,cn=permissions,cn=pbac,$SUFFIX";) +aci: (targetattr=*)(version 3.0;acl "Add Replication Agreements";allow (add) groupdn = "ldap:///cn=addreplica,cn=permissions,cn=pbac,$SUFFIX";) dn: cn="$SUFFIX",cn=mapping tree,cn=config changetype: modify diff --git a/install/tools/ipa-replica-manage b/install/tools/ipa-replica-manage index 0fd06fd2..80974545 100755 --- a/install/tools/ipa-replica-manage +++ b/install/tools/ipa-replica-manage @@ -368,7 +368,7 @@ def main(): if options.dirman_passwd: dirman_passwd = options.dirman_passwd else: - if not test_connection(realm, host) or args[0] == "connect": + if not test_connection(realm, host): dirman_passwd = getpass.getpass("Directory Manager password: ") options.dirman_passwd = dirman_passwd |