diff options
| author | Martin Kosek <mkosek@redhat.com> | 2013-11-29 13:29:20 +0100 |
|---|---|---|
| committer | Petr Viktorin <pviktori@redhat.com> | 2013-12-09 12:21:22 +0100 |
| commit | 9677308caa78ed722570aea32f21334b8c27bad3 (patch) | |
| tree | c0725324e5347b7f00cae94528932211f9fba39c /ipaserver | |
| parent | b6540e88d88470f6566507e442f521214c5a74dc (diff) | |
| download | freeipa.git-9677308caa78ed722570aea32f21334b8c27bad3.tar.gz freeipa.git-9677308caa78ed722570aea32f21334b8c27bad3.tar.xz freeipa.git-9677308caa78ed722570aea32f21334b8c27bad3.zip | |
Allow kernel keyring CCACHE when supported
Server and client installer should allow kernel keyring ccache when
supported.
https://fedorahosted.org/freeipa/ticket/4013
Diffstat (limited to 'ipaserver')
| -rw-r--r-- | ipaserver/install/krbinstance.py | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/ipaserver/install/krbinstance.py b/ipaserver/install/krbinstance.py index 2ab97a4d..80d1addb 100644 --- a/ipaserver/install/krbinstance.py +++ b/ipaserver/install/krbinstance.py @@ -31,6 +31,7 @@ import installutils from ipapython import sysrestore from ipapython import ipautil from ipapython import services as ipaservices +from ipapython import kernel_keyring from ipalib import errors from ipapython.ipa_log_manager import * from ipapython.dn import DN @@ -252,6 +253,15 @@ class KrbInstance(service.Service): dr_map = "" self.sub_dict['OTHER_DOMAIN_REALM_MAPS'] = dr_map + # Configure KEYRING CCACHE if supported + if kernel_keyring.is_persistent_keyring_supported(): + root_logger.debug("Enabling persistent keyring CCACHE") + self.sub_dict['OTHER_LIBDEFAULTS'] = \ + " default_ccache_name = KEYRING:persistent:%{uid}\n" + else: + root_logger.debug("Persistent keyring CCACHE is not enabled") + self.sub_dict['OTHER_LIBDEFAULTS'] = '' + def __configure_sasl_mappings(self): # we need to remove any existing SASL mappings in the directory as otherwise they # they may conflict. |