[Freeipa-devel] [PATCH] 130 ipa-client assumes a single namingcontext

Simo Sorce simo at redhat.com
Fri Sep 30 20:15:54 UTC 2011


On Fri, 2011-09-30 at 16:02 -0400, Stephen Gallagher wrote:
> On Thu, 2011-09-29 at 15:20 +0200, Martin Kosek wrote:
> > How to test:
> > 1) Add new naming context (suffix) to your LDAP database with installed
> > IPA (see attached LDIF). The server should return the new suffix as the
> > first one. You can change with its base DN if it does not.
> > 2) Install IPA client against the server. ipa-client-install should the
> > LDAP server as the IPA one only if the patch is applied on the client
> > 
> > ---
> > 
> > When LDAP server contains more that one suffixes, the ipa client
> > installation does not detect it as IPA server and fails to install.
> > Fix ipa server discovery so that it correctly searches all naming
> > contexts for the IPA one.
> > 
> > https://fedorahosted.org/freeipa/ticket/1868
> 
> 
> Tangentially related, it would be prudent for FreeIPA server
> installations to set not only namingContexts but also the
> defaultNamingContext. This way, clients autodetecting the ldap search
> base from the RootDSE will have an unambiguous way to do so (in the
> event that multiple namingContexts have been added)

Please CC yourself here to be notified when this will be available in
DS: https://bugzilla.redhat.com/show_bug.cgi?id=742317

Simo.


-- 
Simo Sorce * Red Hat, Inc * New York




More information about the Freeipa-devel mailing list