[Freeipa-devel] [PATCH]: Add special passSyncManagers support
Simo Sorce
ssorce at redhat.com
Wed Nov 12 18:28:05 UTC 2008
On Wed, 2008-11-12 at 09:58 -0500, Simo Sorce wrote:
> This patch adds support to read a list of DNs from the plugin
> configuration entry. These DNs are considered superusers from the PoV of
> password changes, so no policies nor immediate expiration are applied to
> the password being set.
>
> This functionality is needed to allow a passsycn plugin on an AD server
> to synchronize the password to IPA.
>
> The patch also cleans up a bit the ipapwd_start function.
I forgot to test this with ldapmodify and of course as soon as I did
(thanks Rob) I relalized I forgot to add checks for passsync managers to
mod preop and add preop.
This is a rebase patch that adds the missing checks.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list