diff options
author | Martin Babinsky <mbabinsk@redhat.com> | 2015-03-12 16:14:22 +0100 |
---|---|---|
committer | Tomas Babej <tbabej@redhat.com> | 2015-03-18 12:31:23 +0100 |
commit | 7b6bee030dac08807f254fdf58ba867c36cab23d (patch) | |
tree | 2dabcb943cbe957fbf7d950b76fc4ec70af4ba30 /ipaserver/install/bindinstance.py | |
parent | a58b77ca9cd3620201306258dd6bd05ea1c73c73 (diff) | |
download | freeipa-7b6bee030dac08807f254fdf58ba867c36cab23d.tar.gz freeipa-7b6bee030dac08807f254fdf58ba867c36cab23d.tar.xz freeipa-7b6bee030dac08807f254fdf58ba867c36cab23d.zip |
ipa-dns-install: use STARTTLS to connect to DS
BindInstance et al. now use STARTTLS to set up secure connection to DS during
ipa-dns-install. This fixes https://fedorahosted.org/freeipa/ticket/4933
Reviewed-By: Martin Basti <mbasti@redhat.com>
Diffstat (limited to 'ipaserver/install/bindinstance.py')
-rw-r--r-- | ipaserver/install/bindinstance.py | 11 |
1 files changed, 7 insertions, 4 deletions
diff --git a/ipaserver/install/bindinstance.py b/ipaserver/install/bindinstance.py index 52aea74cd..679dc5b95 100644 --- a/ipaserver/install/bindinstance.py +++ b/ipaserver/install/bindinstance.py @@ -533,13 +533,16 @@ class DnsBackup(object): class BindInstance(service.Service): - def __init__(self, fstore=None, dm_password=None, api=api): - service.Service.__init__(self, "named", + def __init__(self, fstore=None, dm_password=None, api=api, + start_tls=False): + service.Service.__init__( + self, "named", service_desc="DNS", dm_password=dm_password, ldapi=False, - autobind=ipaldap.AUTOBIND_DISABLED - ) + autobind=ipaldap.AUTOBIND_DISABLED, + start_tls=start_tls + ) self.dns_backup = DnsBackup(self) self.named_user = None self.domain = None |