[Freeipa-devel] [PATCH] updated replication
Karl MacMillan
kmacmill at redhat.com
Fri Dec 21 16:20:09 UTC 2007
On Thu, 2007-12-20 at 22:53 -0500, Rob Crittenden wrote:
> Karl MacMillan wrote:
> > Convert replication to use the new cert infrastructure and
> > correctly issue certs from the same authority. Also remove
> > support for read-only replicas since that work will not
> > be finished and tested for 1.0.
> >
> > Karl
>
>
> You set the serial number to 2000 in dsinstance.py
> DsInstance(service.Service).
>
> That is the same starting point for the web server.
>
> I'd recommend either 2100 or store a file along with the CA that
> contains the last used serial number.
>
Well - we have to get this right for multi-master as well. I'm wondering
if we can leverage the start numbers that we use for the dna plugin.
I've opened a ticket.
> Otherwise it seems to be ok.
>
Pushed with the serial number change.
Karl
More information about the Freeipa-devel
mailing list