Add sidgen postop and task

A postop plugin is added to create the SID for new created users and groups. A directory server task allows to set the SID for existing users and groups. Fixes https://fedorahosted.org/freeipa/ticket/2825
2025-02-25 18:55:28 -06:00 · 2012-06-21 12:54:34 +02:00
parent 63567479df
commit 65ad261663
12 changed files with 1390 additions and 0 deletions
--- a/ipaserver/install/adtrustinstance.py
+++ b/ipaserver/install/adtrustinstance.py
@@ -223,6 +223,13 @@ class ADTRUSTInstance(service.Service):
        except:
            pass

+    def __add_sidgen_module(self):
+        try:
+            self._ldap_mod("ipa-sidgen-conf.ldif", self.sub_dict)
+            self._ldap_mod("ipa-sidgen-task-conf.ldif", self.sub_dict)
+        except:
+            pass
+
    def __write_smb_registry(self):
        template = os.path.join(ipautil.SHARE_DIR, "smb.conf.template")
        conf = ipautil.template_file(template, self.sub_dict)
@@ -430,6 +437,7 @@ class ADTRUSTInstance(service.Service):
        self.step("adding cifs Kerberos principal", self.__setup_principal)
        self.step("adding admin(group) SIDs", self.__add_admin_sids)
        self.step("activating CLDAP plugin", self.__add_cldap_module)
+        self.step("activating sidgen plugin and task", self.__add_sidgen_module)
        self.step("configuring smbd to start on boot", self.__enable)
        if not self.no_msdcs:
            self.step("adding special DNS service records", \