diff options
author | Nathaniel McCallum <npmccallum@redhat.com> | 2013-04-11 12:30:23 -0400 |
---|---|---|
committer | Martin Kosek <mkosek@redhat.com> | 2013-05-17 09:30:51 +0200 |
commit | bc26d87b3445b26b5d33235c1dfeedb7a11cdfc8 (patch) | |
tree | b6b01d6ca34152b3f8776117874c23dfbe2b2c2d /install/updates | |
parent | c5bfeb1ed0fc8a31fcfea475cccc98da37f7c17e (diff) | |
download | freeipa-bc26d87b3445b26b5d33235c1dfeedb7a11cdfc8.tar.gz freeipa-bc26d87b3445b26b5d33235c1dfeedb7a11cdfc8.tar.xz freeipa-bc26d87b3445b26b5d33235c1dfeedb7a11cdfc8.zip |
Add ipaUserAuthType and ipaUserAuthTypeClass
This schema addition will be useful for future commits. It allows us to
define permitted external authentication methods on both the user and
global config. The implementation is generic, but the immediate usage
is for otp support.
https://fedorahosted.org/freeipa/ticket/3365
http://freeipa.org/page/V3/OTP
Diffstat (limited to 'install/updates')
-rw-r--r-- | install/updates/10-60basev3.update | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/install/updates/10-60basev3.update b/install/updates/10-60basev3.update index 62dd4720c..476fa3ba5 100644 --- a/install/updates/10-60basev3.update +++ b/install/updates/10-60basev3.update @@ -16,3 +16,7 @@ replace:objectClasses: (2.16.840.1.113730.3.8.4.1 NAME 'ipaHost' AUXILIARY MUST # Fix dc syntax (RFC 2247) replace:attributeTypes:"( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domaincomponent' ) DESC 'Standard LDAP attribute type' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'RFC 2247' )::( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domaincomponent' ) DESC 'Standard LDAP attribute type' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'RFC 2247' )" + +# Add ipaUserAuthType and ipaUserAuthTypeClass +add:attributeTypes: (2.16.840.1.113730.3.8.11.40 NAME 'ipaUserAuthType' DESC 'Allowed authentication methods' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'IPA v3') +add:objectclasses: (2.16.840.1.113730.3.8.12.19 NAME 'ipaUserAuthTypeClass' SUP top AUXILIARY DESC 'Class for authentication methods definition' MAY ipaUserAuthType X-ORIGIN 'IPA v3') |