diff options
author | Martin Babinsky <mbabinsk@redhat.com> | 2016-01-07 16:48:11 +0100 |
---|---|---|
committer | Martin Basti <mbasti@redhat.com> | 2016-01-21 18:12:42 +0100 |
commit | d726da3ba20283ffdc1d384dfedf8e6a732dc3d7 (patch) | |
tree | ebac189c1abeb0af3b8642606e3f69d07c3470fa /ipalib | |
parent | fd7ea2c9395651d5bce41cc603557fea107f65a7 (diff) | |
download | freeipa-d726da3ba20283ffdc1d384dfedf8e6a732dc3d7.tar.gz freeipa-d726da3ba20283ffdc1d384dfedf8e6a732dc3d7.tar.xz freeipa-d726da3ba20283ffdc1d384dfedf8e6a732dc3d7.zip |
uninstallation: more robust check for master removal from topology
When uninstalling IPA master in domain level 1 topology, the code that checks
for correct removal from topology will now consider failures to lookup host
entry in local LDAP and to obtain host TGT as a sign that the master entry was
already removed.
https://fedorahosted.org/freeipa/ticket/5584
Reviewed-By: Simo Sorce <ssorce@redhat.com>
Reviewed-By: Martin Basti <mbasti@redhat.com>
Diffstat (limited to 'ipalib')
-rw-r--r-- | ipalib/krb_utils.py | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/ipalib/krb_utils.py b/ipalib/krb_utils.py index 0c4340c3f..b33e4b7c8 100644 --- a/ipalib/krb_utils.py +++ b/ipalib/krb_utils.py @@ -32,6 +32,7 @@ if six.PY3: # Kerberos error codes KRB5_CC_NOTFOUND = 2529639053 # Matching credential not found KRB5_FCC_NOFILE = 2529639107 # No credentials cache found +KRB5KDC_ERR_C_PRINCIPAL_UNKNOWN = 2529638918 # client not found in Kerberos db KRB5KDC_ERR_S_PRINCIPAL_UNKNOWN = 2529638919 # Server not found in Kerberos database KRB5KRB_AP_ERR_TKT_EXPIRED = 2529638944 # Ticket expired KRB5_FCC_PERM = 2529639106 # Credentials cache permissions incorrect |