diff options
author | Simo Sorce <ssorce@redhat.com> | 2011-08-31 11:39:53 -0400 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2012-01-11 12:04:13 -0500 |
commit | 4458611713586ccafc1ba7f1046ba798fffd516e (patch) | |
tree | 1943908c87fd80412a0ce01dbb227065176e8ff3 /ipaserver | |
parent | c5dba36b636359b02012bab319e2294c8739a9ca (diff) | |
download | freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.gz freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.xz freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.zip |
install: We do not need a ldap password anymore
Our new ipa-kdb driver access ldap via ldapi:// and EXTERNAL auth and doesn't
need a bind password anymore.
Fixes: https://fedorahosted.org/freeipa/ticket/1743
Diffstat (limited to 'ipaserver')
-rw-r--r-- | ipaserver/install/krbinstance.py | 10 |
1 files changed, 2 insertions, 8 deletions
diff --git a/ipaserver/install/krbinstance.py b/ipaserver/install/krbinstance.py index 622cf7c5..90620ff6 100644 --- a/ipaserver/install/krbinstance.py +++ b/ipaserver/install/krbinstance.py @@ -184,13 +184,12 @@ class KrbInstance(service.Service): def create_replica(self, realm_name, master_fqdn, host_name, domain_name, admin_password, - ldap_passwd_filename, kpasswd_filename, + kpasswd_filename, setup_pkinit=False, pkcs12_info=None, self_signed_ca=False, subject_base=None): self.pkcs12_info = pkcs12_info self.self_signed_ca = self_signed_ca self.subject_base = subject_base - self.__copy_ldap_passwd(ldap_passwd_filename) self.__copy_kpasswd_keytab(kpasswd_filename) self.master_fqdn = master_fqdn @@ -213,11 +212,6 @@ class KrbInstance(service.Service): self.kpasswd = KpasswdInstance() self.kpasswd.create_instance('KPASSWD', self.fqdn, self.admin_password, self.suffix) - def __copy_ldap_passwd(self, filename): - self.fstore.backup_file("/var/kerberos/krb5kdc/ldappwd") - shutil.copy(filename, "/var/kerberos/krb5kdc/ldappwd") - os.chmod("/var/kerberos/krb5kdc/ldappwd", 0600) - def __copy_kpasswd_keytab(self, filename): self.fstore.backup_file("/var/kerberos/krb5kdc/kpasswd.keytab") shutil.copy(filename, "/var/kerberos/krb5kdc/kpasswd.keytab") @@ -454,7 +448,7 @@ class KrbInstance(service.Service): except: pass - for f in ["/var/kerberos/krb5kdc/ldappwd", "/var/kerberos/krb5kdc/kdc.conf", "/etc/krb5.conf"]: + for f in ["/var/kerberos/krb5kdc/kdc.conf", "/etc/krb5.conf"]: try: self.fstore.restore_file(f) except ValueError, error: |