install: We do not need a ldap password anymore

Our new ipa-kdb driver access ldap via ldapi:// and EXTERNAL auth and doesn't need a bind password anymore. Fixes: https://fedorahosted.org/freeipa/ticket/1743
author: Simo Sorce <ssorce@redhat.com> 2011-08-31 11:39:53 -0400
committer: Simo Sorce <ssorce@redhat.com> 2012-01-11 12:04:13 -0500
commit: 4458611713586ccafc1ba7f1046ba798fffd516e (patch)
tree: 1943908c87fd80412a0ce01dbb227065176e8ff3 /ipaserver
parent: c5dba36b636359b02012bab319e2294c8739a9ca (diff)
download: freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.gz
freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.xz
freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.zip
1 files changed, 2 insertions, 8 deletions
diff --git a/ipaserver/install/krbinstance.py b/ipaserver/install/krbinstance.py
index 622cf7c5..90620ff6 100644
--- a/ipaserver/install/krbinstance.py
+++ b/ipaserver/install/krbinstance.py
@@ -184,13 +184,12 @@ class KrbInstance(service.Service):
     def create_replica(self, realm_name,
                        master_fqdn, host_name,
                        domain_name, admin_password,
-                       ldap_passwd_filename, kpasswd_filename,
+                       kpasswd_filename,
                        setup_pkinit=False, pkcs12_info=None,
                        self_signed_ca=False, subject_base=None):
         self.pkcs12_info = pkcs12_info
         self.self_signed_ca = self_signed_ca
         self.subject_base = subject_base
-        self.__copy_ldap_passwd(ldap_passwd_filename)
         self.__copy_kpasswd_keytab(kpasswd_filename)
         self.master_fqdn = master_fqdn
 
@@ -213,11 +212,6 @@ class KrbInstance(service.Service):
         self.kpasswd = KpasswdInstance()
         self.kpasswd.create_instance('KPASSWD', self.fqdn, self.admin_password, self.suffix)
 
-    def __copy_ldap_passwd(self, filename):
-        self.fstore.backup_file("/var/kerberos/krb5kdc/ldappwd")
-        shutil.copy(filename, "/var/kerberos/krb5kdc/ldappwd")
-        os.chmod("/var/kerberos/krb5kdc/ldappwd", 0600)
-
     def __copy_kpasswd_keytab(self, filename):
         self.fstore.backup_file("/var/kerberos/krb5kdc/kpasswd.keytab")
         shutil.copy(filename, "/var/kerberos/krb5kdc/kpasswd.keytab")
@@ -454,7 +448,7 @@ class KrbInstance(service.Service):
         except:
             pass
 
-        for f in ["/var/kerberos/krb5kdc/ldappwd", "/var/kerberos/krb5kdc/kdc.conf", "/etc/krb5.conf"]:
+        for f in ["/var/kerberos/krb5kdc/kdc.conf", "/etc/krb5.conf"]:
             try:
                 self.fstore.restore_file(f)
             except ValueError, error:
author	Simo Sorce <ssorce@redhat.com>	2011-08-31 11:39:53 -0400
committer	Simo Sorce <ssorce@redhat.com>	2012-01-11 12:04:13 -0500
commit	4458611713586ccafc1ba7f1046ba798fffd516e (patch)
tree	1943908c87fd80412a0ce01dbb227065176e8ff3 /ipaserver
parent	c5dba36b636359b02012bab319e2294c8739a9ca (diff)
download	freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.gz freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.tar.xz freeipa.git-4458611713586ccafc1ba7f1046ba798fffd516e.zip