Improve client install LDAP cert retrieval fallback

CA certificate retrieval function did not fallback from LDAP to HTTP based retrieval in case of an LDAP error, when for example GSSAPI authentication failed. https://fedorahosted.org/freeipa/ticket/3512
2025-02-25 18:55:28 -06:00 · 2013-03-14 14:36:39 +01:00 · 2013-03-14 14:36:39 +01:00 · 1336b39906
commit 1336b39906
parent 6540eff468
1 changed files with 1 additions and 1 deletions
--- a/ipa-client/ipa-install/ipa-client-install
+++ b/ipa-client/ipa-install/ipa-client-install
@ -1624,7 +1624,7 @@ def get_ca_cert(fstore, options, server, basedn):
                except Exception, e:
                    os.unlink(ca_file)
                    raise
-            except errors.NoCertificateError, e:
+            except (errors.NoCertificateError, errors.LDAPError), e:
                root_logger.debug(str(e))
                url = http_url()
                if existing_ca_cert: