diff --git a/po/cs.po b/po/cs.po index 9a08ae32a..e62b17756 100644 --- a/po/cs.po +++ b/po/cs.po @@ -4,8 +4,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Czech\n" @@ -390,7 +390,6 @@ msgstr "Heslo" msgid "Passwords do not match" msgstr "Hesla nejsou stejná." -#, c-format msgid "Passwords do not match!" msgstr "Hesla se neshodují!" diff --git a/po/de.po b/po/de.po index 8f9c2209b..0d283f193 100644 --- a/po/de.po +++ b/po/de.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:16+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: German\n" @@ -2899,7 +2899,6 @@ msgstr "Passwort konnte nicht zurückgesetzt werden" msgid "Passwords do not match" msgstr "Passwörter stimmen nicht überein" -#, c-format msgid "Passwords do not match!" msgstr "Passwörter stimmen nicht überein!" diff --git a/po/es.po b/po/es.po index b9e9fc126..689a8228f 100644 --- a/po/es.po +++ b/po/es.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:30+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2020-03-09 03:38+0000\n" "Last-Translator: Emilio Herrera \n" "Language-Team: Spanish\n" @@ -11055,7 +11055,6 @@ msgstr "Contraseña utilizada en el registro bruto" msgid "Passwords do not match" msgstr "Las contraseñas no coinciden" -#, c-format msgid "Passwords do not match!" msgstr "Las contraseñas no coinciden." @@ -13045,9 +13044,6 @@ msgstr "Esto puede tomar un poco mas de tiempo. Por favor espere ..." msgid "This page has unsaved changes. Please save or revert." msgstr "Esta página tiene cambios sin guardar. Por favor, guardar o deshacer." -msgid "This principal is required by the IPA master" -msgstr "Este director es requerido por el IPA maestro" - msgid "Ticket expired" msgstr "El ticket ha expirado" @@ -14769,3 +14765,6 @@ msgstr "{attr}: no existe tal atributo" #, python-brace-format msgid "{role}: role not found" msgstr "{role}: rol no encontrado" + +#~ msgid "This principal is required by the IPA master" +#~ msgstr "Este director es requerido por el IPA maestro" diff --git a/po/eu.po b/po/eu.po index 14dd196a8..1035a5b2a 100644 --- a/po/eu.po +++ b/po/eu.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:06+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Basque\n" @@ -353,7 +353,6 @@ msgstr "Pasahitza" msgid "Passwords do not match" msgstr "Pasahitzak ez datoz bat" -#, c-format msgid "Passwords do not match!" msgstr "Pasahitzak ez datoz bat!" diff --git a/po/fr.po b/po/fr.po index 88253e172..9cd036500 100644 --- a/po/fr.po +++ b/po/fr.po @@ -7,7 +7,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:39+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: French\n" @@ -13358,7 +13358,6 @@ msgstr "Mot de passe utilisé pour les inscriptions en masse" msgid "Passwords do not match" msgstr "Les mots de passe ne correspondent pas" -#, c-format msgid "Passwords do not match!" msgstr "Les mots de passe ne correspondent pas !" @@ -15952,9 +15951,6 @@ msgstr "" "Cette page comporte des modifications non-sauvegardées. Veuillez les " "enregistrer ou les annuler." -msgid "This principal is required by the IPA master" -msgstr "Ce principal est nécessaire au serveur IPA" - msgid "Ticket expired" msgstr "Ticket périmé" @@ -18097,3 +18093,6 @@ msgstr "{attr} : attribut introuvable" #, python-brace-format msgid "{role}: role not found" msgstr "{role} : rôle introuvable" + +#~ msgid "This principal is required by the IPA master" +#~ msgstr "Ce principal est nécessaire au serveur IPA" diff --git a/po/hi.po b/po/hi.po index 8859bbd0d..30a5e7fcb 100644 --- a/po/hi.po +++ b/po/hi.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Hindi\n" @@ -53,7 +53,6 @@ msgstr "केवल एक मान की अनुमति है" msgid "Passwords do not match" msgstr "पासवर्ड मेल नहीं खाते" -#, c-format msgid "Passwords do not match!" msgstr "पासवर्ड मेल नहीं खाते" diff --git a/po/id.po b/po/id.po index 9b040bd35..a59ff075d 100644 --- a/po/id.po +++ b/po/id.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Indonesian\n" @@ -168,7 +168,6 @@ msgstr "Hanya satu nilai yang diperbolehkan" msgid "Passwords do not match" msgstr "Kata sandi tidak cocok" -#, c-format msgid "Passwords do not match!" msgstr "Kata sandi tidak cocok!" diff --git a/po/ipa.pot b/po/ipa.pot index e1f4f3639..9151337a2 100644 --- a/po/ipa.pot +++ b/po/ipa.pot @@ -6,9 +6,9 @@ #, fuzzy msgid "" msgstr "" -"Project-Id-Version: freeipa 4.9.0.dev202003230955+git67bd27144\n" +"Project-Id-Version: freeipa 4.9.0.dev202006101925+gitba7974bfd\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 12:05+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" @@ -18,30 +18,176 @@ msgstr "" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=INTEGER; plural=EXPRESSION;\n" -#: ipalib/frontend.py:424 -msgid "Results are truncated, try a more specific search" +#: ipalib/parameters.py:405 +msgid "incorrect type" msgstr "" -#: ipalib/frontend.py:563 ipatests/test_xmlrpc/test_ping_plugin.py:52 +#: ipalib/parameters.py:408 +msgid "Only one value is allowed" +msgstr "" + +#: ipalib/parameters.py:875 +msgid "this option is deprecated" +msgstr "" + +#: ipalib/parameters.py:993 +msgid "must be True or False" +msgstr "" + +#: ipalib/parameters.py:1091 +msgid "must be an integer" +msgstr "" + +#: ipalib/parameters.py:1141 #, python-format -msgid "Unknown option: %(option)s" +msgid "must be at least %(minvalue)d" msgstr "" -#: ipalib/frontend.py:953 ipaclient/remote_plugins/2_114/aci.py:290 +#: ipalib/parameters.py:1153 +#, python-format +msgid "can be at most %(maxvalue)d" +msgstr "" + +#: ipalib/parameters.py:1171 +msgid "must be a decimal number" +msgstr "" + +#: ipalib/parameters.py:1217 +#, python-format +msgid "must be at least %(minvalue)s" +msgstr "" + +#: ipalib/parameters.py:1229 +#, python-format +msgid "can be at most %(maxvalue)s" +msgstr "" + +#: ipalib/parameters.py:1239 +#, python-format msgid "" -"Retrieve and print all attributes from the server. Affects command output." +"number class '%(cls)s' is not included in a list of allowed number classes: " +"%(allowed)s" msgstr "" -#: ipalib/frontend.py:959 ipaclient/remote_plugins/2_114/aci.py:297 -msgid "Print entries as stored on the server. Only affects output format." +#: ipalib/parameters.py:1362 +#, python-format +msgid "must match pattern \"%(pattern)s\"" msgstr "" -#: ipalib/frontend.py:965 ipaserver/plugins/batch.py:83 -msgid "Client version. Used to determine if server will accept request." +#: ipalib/parameters.py:1382 +msgid "must be binary data" msgstr "" -#: ipalib/frontend.py:1177 ipaclient/remote_plugins/2_114/misc.py:41 -msgid "Forward to server instead of running locally" +#: ipalib/parameters.py:1401 +#, python-format +msgid "must be at least %(minlength)d bytes" +msgstr "" + +#: ipalib/parameters.py:1413 +#, python-format +msgid "can be at most %(maxlength)d bytes" +msgstr "" + +#: ipalib/parameters.py:1425 +#, python-format +msgid "must be exactly %(length)d bytes" +msgstr "" + +#: ipalib/parameters.py:1442 +msgid "must be a certificate" +msgstr "" + +#: ipalib/parameters.py:1478 +msgid "must be a certificate signing request" +msgstr "" + +#: ipalib/parameters.py:1524 +#, python-format +msgid "Failure decoding Certificate Signing Request: %s" +msgstr "" + +#: ipalib/parameters.py:1548 +msgid "must be Unicode text" +msgstr "" + +#: ipalib/parameters.py:1579 +msgid "Leading and trailing spaces are not allowed" +msgstr "" + +#: ipalib/parameters.py:1589 +#, python-format +msgid "must be at least %(minlength)d characters" +msgstr "" + +#: ipalib/parameters.py:1601 +#, python-format +msgid "can be at most %(maxlength)d characters" +msgstr "" + +#: ipalib/parameters.py:1613 +#, python-format +msgid "must be exactly %(length)d characters" +msgstr "" + +#: ipalib/parameters.py:1635 +#, python-format +msgid "The character %(char)r is not allowed." +msgstr "" + +#: ipalib/parameters.py:1683 +#, python-format +msgid "must be '%(value)s'" +msgstr "" + +#: ipalib/parameters.py:1686 +#, python-format +msgid "must be one of %(values)s" +msgstr "" + +#: ipalib/parameters.py:1803 +msgid "must be datetime value" +msgstr "" + +#: ipalib/parameters.py:1821 +msgid "does not match any of accepted formats: " +msgstr "" + +#: ipalib/parameters.py:2004 +msgid "incomplete time value" +msgstr "" + +#: ipalib/parameters.py:2081 +msgid "must be DNS name" +msgstr "" + +#: ipalib/parameters.py:2109 +msgid "must be absolute" +msgstr "" + +#: ipalib/parameters.py:2115 +msgid "must be relative" +msgstr "" + +#: ipalib/parameters.py:2126 +msgid "must be dictionary" +msgstr "" + +#: ipalib/parameters.py:2135 +msgid "must be Kerberos principal" +msgstr "" + +#: ipalib/parameters.py:2151 +#, python-format +msgid "Malformed principal: '%(value)s'" +msgstr "" + +#: ipalib/parameters.py:2160 +msgid "Service principal is required" +msgstr "" + +#: ipalib/plugable.py:532 +#, python-format +msgid "%(filename)s: file not found" msgstr "" #: ipalib/crud.py:247 ipaclient/remote_plugins/2_114/aci.py:387 @@ -532,6 +678,133 @@ msgstr "" msgid "True means the operation was successful" msgstr "" +#: ipalib/util.py:207 +msgid "Filename is empty" +msgstr "" + +#: ipalib/util.py:211 +#, python-format +msgid "Permission denied: %(file)s" +msgstr "" + +#: ipalib/util.py:408 ipalib/util.py:940 +msgid "empty DNS label" +msgstr "" + +#: ipalib/util.py:411 +msgid "DNS label cannot be longer that 63 characters" +msgstr "" + +#: ipalib/util.py:416 +#, python-format +msgid "" +"only letters, numbers, %(chars)s are allowed. DNS label may not start or end " +"with %(chars2)s" +msgstr "" + +#: ipalib/util.py:432 +msgid "single label {}s are not supported" +msgstr "" + +#: ipalib/util.py:442 +msgid "too many '@' characters" +msgstr "" + +#: ipalib/util.py:471 +msgid "cannot be longer that {} characters" +msgstr "" + +#: ipalib/util.py:478 +msgid "hostname contains empty label (consecutive dots)" +msgstr "" + +#: ipalib/util.py:482 +msgid "not fully qualified" +msgstr "" + +#: ipalib/util.py:495 ipalib/util.py:504 +msgid "invalid SSH public key" +msgstr "" + +#: ipalib/util.py:507 +msgid "options are not allowed" +msgstr "" + +#: ipalib/util.py:743 +msgid "invalid hostmask" +msgstr "" + +#: ipalib/util.py:757 +#, python-format +msgid "query '%(owner)s %(rtype)s': %(error)s" +msgstr "" + +#: ipalib/util.py:761 +#, python-format +msgid "query '%(owner)s %(rtype)s' with EDNS0: %(error)s" +msgstr "" + +#: ipalib/util.py:765 +#, python-format +msgid "" +"answer to query '%(owner)s %(rtype)s' is missing DNSSEC signatures (no RRSIG " +"data)" +msgstr "" + +#: ipalib/util.py:770 +#, python-format +msgid "record '%(owner)s %(rtype)s' failed DNSSEC validation on server %(ip)s" +msgstr "" + +#: ipalib/util.py:938 +msgid "invalid escape code in domain name" +msgstr "" + +#: ipalib/util.py:942 +msgid "domain name cannot be longer than 255 characters" +msgstr "" + +#: ipalib/util.py:944 +msgid "DNS label cannot be longer than 63 characters" +msgstr "" + +#: ipalib/util.py:946 +msgid "invalid domain name" +msgstr "" + +#: ipalib/util.py:959 +#, python-format +msgid "domain name '%(domain)s' should be normalized to: %(normalized)s" +msgstr "" + +#: ipalib/util.py:1071 +#, python-format +msgid "invalid domain-name: %s" +msgstr "" + +#: ipalib/util.py:1083 +#, python-format +msgid "invalid IP address version (is %(value)d, must be %(required_value)d)!" +msgstr "" + +#: ipalib/util.py:1089 +msgid "invalid IP address format" +msgstr "" + +#: ipalib/util.py:1107 +#, python-format +msgid "%(port)s is not a valid port" +msgstr "" + +#: ipalib/util.py:1140 +msgid "" +"at least one value equal to the canonical principal name must be present" +msgstr "" + +#: ipalib/util.py:1227 +msgid "realm or UPN suffix overlaps with trusted domain namespace" +msgstr "" + #: ipalib/messages.py:84 msgid "Additional instructions:" msgstr "" @@ -723,8 +996,7 @@ msgstr "" msgid "Enter %(label)s again to verify: " msgstr "" -#: ipalib/cli.py:639 client/ipa-getkeytab.c:596 -#, c-format +#: ipalib/cli.py:639 msgid "Passwords do not match!" msgstr "" @@ -773,11 +1045,6 @@ msgstr "" msgid "No file to read" msgstr "" -#: ipalib/plugable.py:529 -#, python-format -msgid "%(filename)s: file not found" -msgstr "" - #: ipalib/rpc.py:1112 msgid "any of the configured servers" msgstr "" @@ -786,298 +1053,30 @@ msgstr "" msgid "Exceeded number of tries to forward a request." msgstr "" -#: ipalib/util.py:207 -msgid "Filename is empty" +#: ipalib/frontend.py:424 +msgid "Results are truncated, try a more specific search" msgstr "" -#: ipalib/util.py:211 +#: ipalib/frontend.py:563 ipatests/test_xmlrpc/test_ping_plugin.py:52 #, python-format -msgid "Permission denied: %(file)s" +msgid "Unknown option: %(option)s" msgstr "" -#: ipalib/util.py:408 ipalib/util.py:940 -msgid "empty DNS label" -msgstr "" - -#: ipalib/util.py:411 -msgid "DNS label cannot be longer that 63 characters" -msgstr "" - -#: ipalib/util.py:416 -#, python-format +#: ipalib/frontend.py:953 ipaclient/remote_plugins/2_114/aci.py:290 msgid "" -"only letters, numbers, %(chars)s are allowed. DNS label may not start or end " -"with %(chars2)s" +"Retrieve and print all attributes from the server. Affects command output." msgstr "" -#: ipalib/util.py:432 -msgid "single label {}s are not supported" +#: ipalib/frontend.py:959 ipaclient/remote_plugins/2_114/aci.py:297 +msgid "Print entries as stored on the server. Only affects output format." msgstr "" -#: ipalib/util.py:442 -msgid "too many '@' characters" +#: ipalib/frontend.py:965 ipaserver/plugins/batch.py:83 +msgid "Client version. Used to determine if server will accept request." msgstr "" -#: ipalib/util.py:471 -msgid "cannot be longer that {} characters" -msgstr "" - -#: ipalib/util.py:478 -msgid "hostname contains empty label (consecutive dots)" -msgstr "" - -#: ipalib/util.py:482 -msgid "not fully qualified" -msgstr "" - -#: ipalib/util.py:495 ipalib/util.py:504 -msgid "invalid SSH public key" -msgstr "" - -#: ipalib/util.py:507 -msgid "options are not allowed" -msgstr "" - -#: ipalib/util.py:743 -msgid "invalid hostmask" -msgstr "" - -#: ipalib/util.py:757 -#, python-format -msgid "query '%(owner)s %(rtype)s': %(error)s" -msgstr "" - -#: ipalib/util.py:761 -#, python-format -msgid "query '%(owner)s %(rtype)s' with EDNS0: %(error)s" -msgstr "" - -#: ipalib/util.py:765 -#, python-format -msgid "" -"answer to query '%(owner)s %(rtype)s' is missing DNSSEC signatures (no RRSIG " -"data)" -msgstr "" - -#: ipalib/util.py:770 -#, python-format -msgid "record '%(owner)s %(rtype)s' failed DNSSEC validation on server %(ip)s" -msgstr "" - -#: ipalib/util.py:938 -msgid "invalid escape code in domain name" -msgstr "" - -#: ipalib/util.py:942 -msgid "domain name cannot be longer than 255 characters" -msgstr "" - -#: ipalib/util.py:944 -msgid "DNS label cannot be longer than 63 characters" -msgstr "" - -#: ipalib/util.py:946 -msgid "invalid domain name" -msgstr "" - -#: ipalib/util.py:959 -#, python-format -msgid "domain name '%(domain)s' should be normalized to: %(normalized)s" -msgstr "" - -#: ipalib/util.py:1071 -#, python-format -msgid "invalid domain-name: %s" -msgstr "" - -#: ipalib/util.py:1083 -#, python-format -msgid "invalid IP address version (is %(value)d, must be %(required_value)d)!" -msgstr "" - -#: ipalib/util.py:1089 -msgid "invalid IP address format" -msgstr "" - -#: ipalib/util.py:1107 -#, python-format -msgid "%(port)s is not a valid port" -msgstr "" - -#: ipalib/util.py:1140 -msgid "" -"at least one value equal to the canonical principal name must be present" -msgstr "" - -#: ipalib/util.py:1227 -msgid "realm or UPN suffix overlaps with trusted domain namespace" -msgstr "" - -#: ipalib/parameters.py:405 -msgid "incorrect type" -msgstr "" - -#: ipalib/parameters.py:408 -msgid "Only one value is allowed" -msgstr "" - -#: ipalib/parameters.py:875 -msgid "this option is deprecated" -msgstr "" - -#: ipalib/parameters.py:993 -msgid "must be True or False" -msgstr "" - -#: ipalib/parameters.py:1091 -msgid "must be an integer" -msgstr "" - -#: ipalib/parameters.py:1141 -#, python-format -msgid "must be at least %(minvalue)d" -msgstr "" - -#: ipalib/parameters.py:1153 -#, python-format -msgid "can be at most %(maxvalue)d" -msgstr "" - -#: ipalib/parameters.py:1171 -msgid "must be a decimal number" -msgstr "" - -#: ipalib/parameters.py:1217 -#, python-format -msgid "must be at least %(minvalue)s" -msgstr "" - -#: ipalib/parameters.py:1229 -#, python-format -msgid "can be at most %(maxvalue)s" -msgstr "" - -#: ipalib/parameters.py:1239 -#, python-format -msgid "" -"number class '%(cls)s' is not included in a list of allowed number classes: " -"%(allowed)s" -msgstr "" - -#: ipalib/parameters.py:1362 -#, python-format -msgid "must match pattern \"%(pattern)s\"" -msgstr "" - -#: ipalib/parameters.py:1382 -msgid "must be binary data" -msgstr "" - -#: ipalib/parameters.py:1401 -#, python-format -msgid "must be at least %(minlength)d bytes" -msgstr "" - -#: ipalib/parameters.py:1413 -#, python-format -msgid "can be at most %(maxlength)d bytes" -msgstr "" - -#: ipalib/parameters.py:1425 -#, python-format -msgid "must be exactly %(length)d bytes" -msgstr "" - -#: ipalib/parameters.py:1442 -msgid "must be a certificate" -msgstr "" - -#: ipalib/parameters.py:1478 -msgid "must be a certificate signing request" -msgstr "" - -#: ipalib/parameters.py:1524 -#, python-format -msgid "Failure decoding Certificate Signing Request: %s" -msgstr "" - -#: ipalib/parameters.py:1548 -msgid "must be Unicode text" -msgstr "" - -#: ipalib/parameters.py:1579 -msgid "Leading and trailing spaces are not allowed" -msgstr "" - -#: ipalib/parameters.py:1589 -#, python-format -msgid "must be at least %(minlength)d characters" -msgstr "" - -#: ipalib/parameters.py:1601 -#, python-format -msgid "can be at most %(maxlength)d characters" -msgstr "" - -#: ipalib/parameters.py:1613 -#, python-format -msgid "must be exactly %(length)d characters" -msgstr "" - -#: ipalib/parameters.py:1635 -#, python-format -msgid "The character %(char)r is not allowed." -msgstr "" - -#: ipalib/parameters.py:1683 -#, python-format -msgid "must be '%(value)s'" -msgstr "" - -#: ipalib/parameters.py:1686 -#, python-format -msgid "must be one of %(values)s" -msgstr "" - -#: ipalib/parameters.py:1803 -msgid "must be datetime value" -msgstr "" - -#: ipalib/parameters.py:1821 -msgid "does not match any of accepted formats: " -msgstr "" - -#: ipalib/parameters.py:2004 -msgid "incomplete time value" -msgstr "" - -#: ipalib/parameters.py:2081 -msgid "must be DNS name" -msgstr "" - -#: ipalib/parameters.py:2109 -msgid "must be absolute" -msgstr "" - -#: ipalib/parameters.py:2115 -msgid "must be relative" -msgstr "" - -#: ipalib/parameters.py:2126 -msgid "must be dictionary" -msgstr "" - -#: ipalib/parameters.py:2135 -msgid "must be Kerberos principal" -msgstr "" - -#: ipalib/parameters.py:2151 -#, python-format -msgid "Malformed principal: '%(value)s'" -msgstr "" - -#: ipalib/parameters.py:2160 -msgid "Service principal is required" +#: ipalib/frontend.py:1177 ipaclient/remote_plugins/2_114/misc.py:41 +msgid "Forward to server instead of running locally" msgstr "" #: ipalib/misc.py:20 ipaclient/remote_plugins/2_114/misc.py:28 @@ -1141,21 +1140,21 @@ msgstr "" msgid "Retrieving CA status failed with status %d" msgstr "" -#: ipapython/ipaldap.py:1178 +#: ipapython/ipaldap.py:1185 #, python-format msgid "objectclass %s not found" msgstr "" +#: ipaserver/install/replication.py:1719 ipaserver/install/replication.py:1738 +#, python-format +msgid "Replication agreement for %(hostname)s not found" +msgstr "" + #: ipaserver/install/certs.py:480 #, python-format msgid "Unable to communicate with CMS (status %d)" msgstr "" -#: ipaserver/install/replication.py:1718 ipaserver/install/replication.py:1737 -#, python-format -msgid "Replication agreement for %(hostname)s not found" -msgstr "" - #: ipaserver/plugins/netgroup.py:46 msgid "" "\n" @@ -1194,7 +1193,7 @@ msgstr "" msgid "netgroups" msgstr "" -#: ipaserver/plugins/netgroup.py:196 ipaserver/plugins/internal.py:1155 +#: ipaserver/plugins/netgroup.py:196 ipaserver/plugins/internal.py:1159 msgid "Netgroups" msgstr "" @@ -1207,18 +1206,17 @@ msgid "Netgroup name" msgstr "" #: ipaserver/plugins/netgroup.py:210 ipaserver/plugins/radiusproxy.py:117 -#: ipaserver/plugins/host.py:462 ipaserver/plugins/automount.py:364 -#: ipaserver/plugins/certmap.py:279 ipaserver/plugins/privilege.py:159 -#: ipaserver/plugins/otptoken.py:174 ipaserver/plugins/hbacsvc.py:108 -#: ipaserver/plugins/selinuxusermap.py:265 -#: ipaserver/plugins/hbacsvcgroup.py:120 ipaserver/plugins/group.py:329 -#: ipaserver/plugins/hbacrule.py:253 ipaserver/plugins/hostgroup.py:192 -#: ipaserver/plugins/ca.py:87 ipaserver/plugins/automember.py:257 -#: ipaserver/plugins/location.py:111 ipaserver/plugins/sudorule.py:232 -#: ipaserver/plugins/vault.py:594 ipaserver/plugins/idviews.py:119 -#: ipaserver/plugins/idviews.py:717 ipaserver/plugins/role.py:150 +#: ipaserver/plugins/role.py:153 ipaserver/plugins/selinuxusermap.py:265 +#: ipaserver/plugins/sudorule.py:232 ipaserver/plugins/automount.py:364 +#: ipaserver/plugins/otptoken.py:174 ipaserver/plugins/privilege.py:159 +#: ipaserver/plugins/idviews.py:142 ipaserver/plugins/idviews.py:740 +#: ipaserver/plugins/hbacrule.py:253 ipaserver/plugins/hbacsvc.py:108 +#: ipaserver/plugins/location.py:111 ipaserver/plugins/hbacsvcgroup.py:120 +#: ipaserver/plugins/vault.py:594 ipaserver/plugins/ca.py:87 +#: ipaserver/plugins/certmap.py:279 ipaserver/plugins/automember.py:257 +#: ipaserver/plugins/host.py:462 ipaserver/plugins/hostgroup.py:193 #: ipaserver/plugins/sudocmd.py:122 ipaserver/plugins/sudocmdgroup.py:130 -#: ipaserver/plugins/caacl.py:175 +#: ipaserver/plugins/caacl.py:175 ipaserver/plugins/group.py:329 msgid "Description" msgstr "" @@ -1235,24 +1233,24 @@ msgid "IPA unique ID" msgstr "" #: ipaserver/plugins/netgroup.py:227 ipaserver/plugins/selinuxusermap.py:253 -#: ipaserver/plugins/hbacrule.py:223 ipaserver/plugins/sudorule.py:240 +#: ipaserver/plugins/sudorule.py:240 ipaserver/plugins/hbacrule.py:223 #: ipaserver/plugins/caacl.py:195 ipaclient/remote_plugins/2_114/hbacrule.py:87 msgid "User category" msgstr "" #: ipaserver/plugins/netgroup.py:228 ipaserver/plugins/selinuxusermap.py:254 -#: ipaserver/plugins/hbacrule.py:224 ipaserver/plugins/sudorule.py:241 +#: ipaserver/plugins/sudorule.py:241 ipaserver/plugins/hbacrule.py:224 msgid "User category the rule applies to" msgstr "" #: ipaserver/plugins/netgroup.py:233 ipaserver/plugins/selinuxusermap.py:259 -#: ipaserver/plugins/hbacrule.py:229 ipaserver/plugins/sudorule.py:246 +#: ipaserver/plugins/sudorule.py:246 ipaserver/plugins/hbacrule.py:229 #: ipaserver/plugins/caacl.py:201 ipaclient/remote_plugins/2_114/hbacrule.py:93 msgid "Host category" msgstr "" #: ipaserver/plugins/netgroup.py:234 ipaserver/plugins/selinuxusermap.py:260 -#: ipaserver/plugins/hbacrule.py:230 ipaserver/plugins/sudorule.py:247 +#: ipaserver/plugins/sudorule.py:247 ipaserver/plugins/hbacrule.py:230 msgid "Host category the rule applies to" msgstr "" @@ -1358,7 +1356,7 @@ msgid "PKINIT" msgstr "" #: ipaserver/plugins/pkinit.py:47 ipaserver/plugins/serverrole.py:58 -#: ipaserver/plugins/server.py:103 ipaserver/plugins/dnsserver.py:112 +#: ipaserver/plugins/dnsserver.py:112 ipaserver/plugins/server.py:103 msgid "Server name" msgstr "" @@ -1386,24 +1384,24 @@ msgid_plural "%(count)s servers matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/pkinit.py:71 ipaserver/plugins/baseldap.py:1888 -#: ipaserver/plugins/serverrole.py:123 ipaserver/plugins/cert.py:1551 +#: ipaserver/plugins/pkinit.py:71 ipaserver/plugins/serverrole.py:123 +#: ipaserver/plugins/baseldap.py:1892 ipaserver/plugins/cert.py:1566 msgid "Time Limit" msgstr "" -#: ipaserver/plugins/pkinit.py:72 ipaserver/plugins/baseldap.py:1889 -#: ipaserver/plugins/serverrole.py:124 ipaserver/plugins/cert.py:1552 +#: ipaserver/plugins/pkinit.py:72 ipaserver/plugins/serverrole.py:124 +#: ipaserver/plugins/baseldap.py:1893 ipaserver/plugins/cert.py:1567 msgid "Time limit of search in seconds (0 is unlimited)" msgstr "" -#: ipaserver/plugins/pkinit.py:79 ipaserver/plugins/baseldap.py:1895 -#: ipaserver/plugins/serverrole.py:131 ipaserver/plugins/cert.py:1556 -#: ipaserver/plugins/hbactest.py:304 +#: ipaserver/plugins/pkinit.py:79 ipaserver/plugins/serverrole.py:131 +#: ipaserver/plugins/hbactest.py:304 ipaserver/plugins/baseldap.py:1899 +#: ipaserver/plugins/cert.py:1571 msgid "Size Limit" msgstr "" -#: ipaserver/plugins/pkinit.py:80 ipaserver/plugins/baseldap.py:1896 -#: ipaserver/plugins/serverrole.py:132 ipaserver/plugins/cert.py:1557 +#: ipaserver/plugins/pkinit.py:80 ipaserver/plugins/serverrole.py:132 +#: ipaserver/plugins/baseldap.py:1900 ipaserver/plugins/cert.py:1572 msgid "Maximum number of entries returned (0 is unlimited)" msgstr "" @@ -1427,14 +1425,14 @@ msgid "" "integrating with third-party authentication services.\n" msgstr "" -#: ipaserver/plugins/radiusproxy.py:43 ipaserver/plugins/host.py:106 -#: ipaserver/plugins/certmap.py:60 ipaserver/plugins/serverrole.py:19 -#: ipaserver/plugins/otptoken.py:49 ipaserver/plugins/server.py:40 -#: ipaserver/plugins/permission.py:97 ipaserver/plugins/ca.py:35 -#: ipaserver/plugins/schema.py:34 ipaserver/plugins/automember.py:63 -#: ipaserver/plugins/cert.py:98 ipaserver/plugins/location.py:37 -#: ipaserver/plugins/sudorule.py:70 ipaserver/plugins/vault.py:90 -#: ipaserver/plugins/dnsserver.py:39 ipaclient/plugins/otptoken_yubikey.py:47 +#: ipaserver/plugins/radiusproxy.py:43 ipaserver/plugins/permission.py:97 +#: ipaserver/plugins/serverrole.py:19 ipaserver/plugins/sudorule.py:70 +#: ipaserver/plugins/otptoken.py:49 ipaserver/plugins/location.py:37 +#: ipaserver/plugins/vault.py:90 ipaserver/plugins/ca.py:35 +#: ipaserver/plugins/certmap.py:60 ipaserver/plugins/automember.py:63 +#: ipaserver/plugins/host.py:106 ipaserver/plugins/schema.py:34 +#: ipaserver/plugins/dnsserver.py:39 ipaserver/plugins/server.py:40 +#: ipaserver/plugins/cert.py:98 ipaclient/plugins/otptoken_yubikey.py:47 msgid "" "\n" "EXAMPLES:\n" @@ -1642,8 +1640,8 @@ msgstr "" msgid "Self-service name" msgstr "" -#: ipaserver/plugins/selfservice.py:84 ipaserver/plugins/aci.py:463 -#: ipaserver/plugins/baseldap.py:73 ipaserver/plugins/permission.py:230 +#: ipaserver/plugins/selfservice.py:84 ipaserver/plugins/permission.py:230 +#: ipaserver/plugins/aci.py:463 ipaserver/plugins/baseldap.py:73 #: ipaserver/plugins/delegation.py:81 ipaclient/remote_plugins/2_114/aci.py:145 msgid "Permissions" msgstr "" @@ -1661,8 +1659,8 @@ msgstr "" msgid "Attributes to which the permission applies." msgstr "" -#: ipaserver/plugins/selfservice.py:94 ipaserver/plugins/aci.py:514 -#: ipaserver/plugins/permission.py:359 ipaserver/plugins/delegation.py:101 +#: ipaserver/plugins/selfservice.py:94 ipaserver/plugins/permission.py:359 +#: ipaserver/plugins/aci.py:514 ipaserver/plugins/delegation.py:101 msgid "ACI" msgstr "" @@ -1708,37 +1706,1016 @@ msgstr[1] "" msgid "Display information about a self-service permission." msgstr "" -#: ipaserver/plugins/join.py:30 ipaclient/remote_plugins/2_114/join.py:19 +#: ipaserver/plugins/permission.py:40 msgid "" "\n" -"Joining an IPA domain\n" +"Permissions\n" msgstr "" -#: ipaserver/plugins/join.py:54 ipaclient/remote_plugins/2_114/join.py:28 -msgid "Join an IPA domain" -msgstr "" - -#: ipaserver/plugins/join.py:62 ipaclient/remote_plugins/2_114/join.py:34 -msgid "The hostname to register as" -msgstr "" - -#: ipaserver/plugins/join.py:71 ipaclient/remote_plugins/2_114/join.py:44 -msgid "The IPA realm" -msgstr "" - -#: ipaserver/plugins/join.py:77 ipaclient/remote_plugins/2_114/join.py:54 -msgid "Hardware platform of the host (e.g. Lenovo T61)" -msgstr "" - -#: ipaserver/plugins/join.py:81 ipaclient/remote_plugins/2_114/join.py:60 -msgid "Operating System and version of the host (e.g. Fedora 9)" -msgstr "" - -#: ipaserver/plugins/join.py:121 -#, python-format +#: ipaserver/plugins/permission.py:42 msgid "" -"Insufficient 'write' privilege to the 'krbLastPwdChange' attribute of entry " -"'%s'." +"\n" +"A permission enables fine-grained delegation of rights. A permission is\n" +"a human-readable wrapper around a 389-ds Access Control Rule,\n" +"or instruction (ACI).\n" +"A permission grants the right to perform a specific task such as adding a\n" +"user, modifying a group, etc.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:48 +msgid "" +"\n" +"A permission may not contain other permissions.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:50 +msgid "" +"\n" +"* A permission grants access to read, write, add, delete, read, search,\n" +" or compare.\n" +"* A privilege combines similar permissions (for example all the permissions\n" +" needed to add a user).\n" +"* A role grants a set of privileges to users, groups, hosts or hostgroups.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:56 +msgid "" +"\n" +"A permission is made up of a number of different parts:\n" +"\n" +"1. The name of the permission.\n" +"2. The target of the permission.\n" +"3. The rights granted by the permission.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:62 +msgid "" +"\n" +"Rights define what operations are allowed, and may be one or more\n" +"of the following:\n" +"1. write - write one or more attributes\n" +"2. read - read one or more attributes\n" +"3. search - search on one or more attributes\n" +"4. compare - compare one or more attributes\n" +"5. add - add a new entry to the tree\n" +"6. delete - delete an existing entry\n" +"7. all - all permissions are granted\n" +msgstr "" + +#: ipaserver/plugins/permission.py:72 +msgid "" +"\n" +"Note the distinction between attributes and entries. The permissions are\n" +"independent, so being able to add a user does not mean that the user will\n" +"be editable.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:76 +msgid "" +"\n" +"There are a number of allowed targets:\n" +"1. subtree: a DN; the permission applies to the subtree under this DN\n" +"2. target filter: an LDAP filter\n" +"3. target: DN with possible wildcards, specifies entries permission applies " +"to\n" +msgstr "" + +#: ipaserver/plugins/permission.py:81 +msgid "" +"\n" +"Additionally, there are the following convenience options.\n" +"Setting one of these options will set the corresponding attribute(s).\n" +"1. type: a type of object (user, group, etc); sets subtree and target " +"filter.\n" +"2. memberof: apply to members of a group; sets target filter\n" +"3. targetgroup: grant access to modify a specific group (such as granting\n" +" the rights to manage group membership); sets target.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:88 +msgid "" +"\n" +"Managed permissions\n" +msgstr "" + +#: ipaserver/plugins/permission.py:90 +msgid "" +"\n" +"Permissions that come with IPA by default can be so-called \"managed\"\n" +"permissions. These have a default set of attributes they apply to,\n" +"but the administrator can add/remove individual attributes to/from the set.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:94 +msgid "" +"\n" +"Deleting or renaming a managed permission, as well as changing its target,\n" +"is not allowed.\n" +msgstr "" + +#: ipaserver/plugins/permission.py:99 +msgid "" +"\n" +" Add a permission that grants the creation of users:\n" +" ipa permission-add --type=user --permissions=add \"Add Users\"\n" +msgstr "" + +#: ipaserver/plugins/permission.py:102 +msgid "" +"\n" +" Add a permission that grants the ability to manage group membership:\n" +" ipa permission-add --attrs=member --permissions=write --type=group " +"\"Manage Group Members\"\n" +msgstr "" + +#: ipaserver/plugins/permission.py:129 +msgid "must be enclosed in parentheses" +msgstr "" + +#: ipaserver/plugins/permission.py:149 +#, python-format +msgid "\"%s\" is not an object type" +msgstr "" + +#: ipaserver/plugins/permission.py:151 ipaserver/plugins/permission.py:897 +#, python-format +msgid "\"%s\" is not a valid permission type" +msgstr "" + +#: ipaserver/plugins/permission.py:169 +msgid "Permission flags" +msgstr "" + +#: ipaserver/plugins/permission.py:180 +msgid "permission" +msgstr "" + +#: ipaserver/plugins/permission.py:181 +msgid "permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:231 ipaserver/plugins/aci.py:451 +msgid "Permission" +msgstr "" + +#: ipaserver/plugins/permission.py:236 +msgid "Permission name" +msgstr "" + +#: ipaserver/plugins/permission.py:245 +msgid "Granted rights" +msgstr "" + +#: ipaserver/plugins/permission.py:246 +msgid "Rights to grant (read, search, compare, write, add, delete, all)" +msgstr "" + +#: ipaserver/plugins/permission.py:253 +msgid "Effective attributes" +msgstr "" + +#: ipaserver/plugins/permission.py:254 +msgid "All attributes to which the permission applies" +msgstr "" + +#: ipaserver/plugins/permission.py:259 +msgid "Included attributes" +msgstr "" + +#: ipaserver/plugins/permission.py:260 +msgid "User-specified attributes to which the permission applies" +msgstr "" + +#: ipaserver/plugins/permission.py:265 +msgid "Excluded attributes" +msgstr "" + +#: ipaserver/plugins/permission.py:266 +msgid "" +"User-specified attributes to which the permission explicitly does not apply" +msgstr "" + +#: ipaserver/plugins/permission.py:272 +msgid "Default attributes" +msgstr "" + +#: ipaserver/plugins/permission.py:273 +msgid "Attributes to which the permission applies by default" +msgstr "" + +#: ipaserver/plugins/permission.py:279 ipaserver/plugins/permission.py:280 +msgid "Bind rule type" +msgstr "" + +#: ipaserver/plugins/permission.py:289 ipaserver/plugins/aci.py:496 +msgid "Subtree" +msgstr "" + +#: ipaserver/plugins/permission.py:290 +msgid "Subtree to apply permissions to" +msgstr "" + +#: ipaserver/plugins/permission.py:298 ipaserver/plugins/permission.py:299 +msgid "Extra target filter" +msgstr "" + +#: ipaserver/plugins/permission.py:305 +msgid "Raw target filter" +msgstr "" + +#: ipaserver/plugins/permission.py:306 +msgid "All target filters, including those implied by type and memberof" +msgstr "" + +#: ipaserver/plugins/permission.py:313 +msgid "Target DN" +msgstr "" + +#: ipaserver/plugins/permission.py:314 +msgid "" +"Optional DN to apply the permission to (must be in the subtree, but may not " +"yet exist)" +msgstr "" + +#: ipaserver/plugins/permission.py:321 +msgid "Target DN subtree" +msgstr "" + +#: ipaserver/plugins/permission.py:322 +msgid "" +"Optional DN subtree where an entry can be moved to (must be in the subtree, " +"but may not yet exist)" +msgstr "" + +#: ipaserver/plugins/permission.py:329 +msgid "Origin DN subtree" +msgstr "" + +#: ipaserver/plugins/permission.py:330 +msgid "" +"Optional DN subtree from where an entry can be moved (must be in the " +"subtree, but may not yet exist)" +msgstr "" + +#: ipaserver/plugins/permission.py:335 +msgid "Member of group" +msgstr "" + +#: ipaserver/plugins/permission.py:336 +msgid "Target members of a group (sets memberOf targetfilter)" +msgstr "" + +#: ipaserver/plugins/permission.py:340 ipaserver/plugins/aci.py:502 +msgid "Target group" +msgstr "" + +#: ipaserver/plugins/permission.py:341 +msgid "User group to apply permissions to (sets target)" +msgstr "" + +#: ipaserver/plugins/permission.py:346 ipaserver/plugins/otptoken.py:165 +#: ipaserver/plugins/vault.py:600 ipaserver/plugins/aci.py:477 +#: ipaserver/plugins/schema.py:447 ipaclient/remote_plugins/2_114/aci.py:158 +msgid "Type" +msgstr "" + +#: ipaserver/plugins/permission.py:347 +msgid "Type of IPA object (sets subtree and objectClass targetfilter)" +msgstr "" + +#: ipaserver/plugins/permission.py:353 +#, python-format +msgid "Deprecated; use %s" +msgstr "" + +#: ipaserver/plugins/permission.py:370 +#, python-format +msgid "Permission with unknown flag %s may not be modified or removed" +msgstr "" + +#: ipaserver/plugins/permission.py:374 +msgid "A SYSTEM permission may not be modified or removed" +msgstr "" + +#: ipaserver/plugins/permission.py:624 +#, python-format +msgid "Entry %s not found" +msgstr "" + +#: ipaserver/plugins/permission.py:716 +#, python-format +msgid "The ACI for permission %(name)s was not found in %(dn)s " +msgstr "" + +#: ipaserver/plugins/permission.py:820 +msgid "" +"cannot specify full target filter and extra target filter simultaneously" +msgstr "" + +#: ipaserver/plugins/permission.py:843 +#, python-format +msgid "option was renamed; use %s" +msgstr "" + +#: ipaserver/plugins/permission.py:847 +#, python-format +msgid "Cannot use %(old_name)s with %(new_name)s" +msgstr "" + +#: ipaserver/plugins/permission.py:861 ipaserver/plugins/permission.py:876 +#, python-format +msgid "%s: group not found" +msgstr "" + +#: ipaserver/plugins/permission.py:871 +msgid "target and targetgroup are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/permission.py:892 +msgid "subtree and type are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/permission.py:930 +msgid "Bad search filter" +msgstr "" + +#: ipaserver/plugins/permission.py:940 +#, python-format +msgid "Entry %s does not exist" +msgstr "" + +#: ipaserver/plugins/permission.py:949 +msgid "" +"there must be at least one target entry specifier (e.g. target, " +"targetfilter, attrs)" +msgstr "" + +#: ipaserver/plugins/permission.py:959 +msgid "Add a system permission without an ACI (internal command)" +msgstr "" + +#: ipaserver/plugins/permission.py:961 ipaserver/plugins/permission.py:989 +#, python-format +msgid "Added permission \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/permission.py:987 +msgid "Add a new permission." +msgstr "" + +#: ipaserver/plugins/permission.py:1014 +msgid "attrs and included attributes are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/permission.py:1046 +#, python-format +msgid "Cannot store permission ACI to %s" +msgstr "" + +#: ipaserver/plugins/permission.py:1055 +msgid "Delete a permission." +msgstr "" + +#: ipaserver/plugins/permission.py:1057 +#, python-format +msgid "Deleted permission \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/permission.py:1061 ipaserver/plugins/service.py:628 +#: ipaserver/plugins/dns.py:2867 ipaserver/plugins/dns.py:3554 +#: ipaserver/plugins/host.py:661 ipaserver/plugins/realmdomains.py:151 +msgid "Force" +msgstr "" + +#: ipaserver/plugins/permission.py:1063 +msgid "force delete of SYSTEM permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:1077 +msgid "cannot delete managed permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:1083 +#, python-format +msgid "ACI of permission %s was not found" +msgstr "" + +#: ipaserver/plugins/permission.py:1090 +msgid "Modify a permission." +msgstr "" + +#: ipaserver/plugins/permission.py:1092 +#, python-format +msgid "Modified permission \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/permission.py:1125 +msgid "cannot rename managed permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:1132 ipaserver/plugins/permission.py:1136 +msgid "not modifiable on managed permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:1143 +msgid "only available on managed permissions" +msgstr "" + +#: ipaserver/plugins/permission.py:1150 ipaserver/plugins/permission.py:1269 +msgid "attrs and included/excluded attributes are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/permission.py:1161 +msgid "cannot set bindtype for a permission that is assigned to a privilege" +msgstr "" + +#: ipaserver/plugins/permission.py:1255 +msgid "Search for permissions." +msgstr "" + +#: ipaserver/plugins/permission.py:1258 +#, python-format +msgid "%(count)d permission matched" +msgid_plural "%(count)d permissions matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/permission.py:1388 +msgid "Display information about a permission." +msgstr "" + +#: ipaserver/plugins/permission.py:1398 +msgid "Add members to a permission." +msgstr "" + +#: ipaserver/plugins/permission.py:1410 +msgid "Remove members from a permission." +msgstr "" + +#: ipaserver/plugins/role.py:38 ipaclient/remote_plugins/2_114/role.py:19 +msgid "" +"\n" +"Roles\n" +"\n" +"A role is used for fine-grained delegation. A permission grants the ability\n" +"to perform given low-level tasks (add a user, modify a group, etc.). A\n" +"privilege combines one or more permissions into a higher-level abstraction\n" +"such as useradmin. A useradmin would be able to add, delete and modify " +"users.\n" +"\n" +"Privileges are assigned to Roles.\n" +"\n" +"Users, groups, hosts and hostgroups may be members of a Role.\n" +"\n" +"Roles can not contain other roles.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new role:\n" +" ipa role-add --desc=\"Junior-level admin\" junioradmin\n" +"\n" +" Add some privileges to this role:\n" +" ipa role-add-privilege --privileges=addusers junioradmin\n" +" ipa role-add-privilege --privileges=change_password junioradmin\n" +" ipa role-add-privilege --privileges=add_user_to_default_group " +"junioradmin\n" +"\n" +" Add a group of users to this role:\n" +" ipa group-add --desc=\"User admins\" useradmins\n" +" ipa role-add-member --groups=useradmins junioradmin\n" +"\n" +" Display information about a role:\n" +" ipa role-show junioradmin\n" +"\n" +" The result of this is that any users in the group 'junioradmin' can\n" +" add users, reset passwords or add a user to the default IPA user group.\n" +msgstr "" + +#: ipaserver/plugins/role.py:81 ipaserver/plugins/serverrole.py:185 +msgid "role" +msgstr "" + +#: ipaserver/plugins/role.py:82 ipaserver/plugins/serverrole.py:186 +msgid "roles" +msgstr "" + +#: ipaserver/plugins/role.py:142 ipaserver/plugins/baseldap.py:79 +msgid "Roles" +msgstr "" + +#: ipaserver/plugins/role.py:143 +msgid "Role" +msgstr "" + +#: ipaserver/plugins/role.py:148 ipaserver/plugins/serverrole.py:64 +#: ipaserver/plugins/serverrole.py:191 +msgid "Role name" +msgstr "" + +#: ipaserver/plugins/role.py:154 ipaclient/remote_plugins/2_114/role.py:69 +msgid "A description of this role-group" +msgstr "" + +#: ipaserver/plugins/role.py:162 ipaclient/remote_plugins/2_114/role.py:106 +msgid "Add a new role." +msgstr "" + +#: ipaserver/plugins/role.py:164 +#, python-format +msgid "Added role \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/role.py:170 ipaclient/remote_plugins/2_114/role.py:333 +msgid "Delete a role." +msgstr "" + +#: ipaserver/plugins/role.py:172 +#, python-format +msgid "Deleted role \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/role.py:178 ipaclient/remote_plugins/2_114/role.py:459 +msgid "Modify a role." +msgstr "" + +#: ipaserver/plugins/role.py:180 +#, python-format +msgid "Modified role \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/role.py:186 ipaclient/remote_plugins/2_114/role.py:370 +msgid "Search for roles." +msgstr "" + +#: ipaserver/plugins/role.py:189 +#, python-format +msgid "%(count)d role matched" +msgid_plural "%(count)d roles matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/role.py:196 ipaclient/remote_plugins/2_114/role.py:706 +msgid "Display information about a role." +msgstr "" + +#: ipaserver/plugins/role.py:202 ipaclient/remote_plugins/2_114/role.py:177 +msgid "Add members to a role." +msgstr "" + +#: ipaserver/plugins/role.py:214 ipaclient/remote_plugins/2_114/role.py:550 +msgid "Remove members from a role." +msgstr "" + +#: ipaserver/plugins/role.py:220 ipaclient/remote_plugins/2_114/role.py:273 +msgid "Add privileges to a role." +msgstr "" + +#: ipaserver/plugins/role.py:231 ipaserver/plugins/role.py:255 +#: ipaserver/plugins/privilege.py:226 ipaserver/plugins/privilege.py:257 +#: ipaserver/plugins/baseldap.py:1683 ipaserver/plugins/baseldap.py:2170 +msgid "Members that could not be added" +msgstr "" + +#: ipaserver/plugins/role.py:235 ipaclient/remote_plugins/2_114/role.py:326 +msgid "Number of privileges added" +msgstr "" + +#: ipaserver/plugins/role.py:243 ipaclient/remote_plugins/2_114/role.py:646 +msgid "Remove privileges from a role." +msgstr "" + +#: ipaserver/plugins/role.py:260 ipaclient/remote_plugins/2_114/role.py:699 +msgid "Number of privileges removed" +msgstr "" + +#: ipaserver/plugins/service.py:60 +msgid "" +"\n" +"Services\n" +"\n" +"A IPA service represents a service that runs on a host. The IPA service\n" +"record can store a Kerberos principal, an SSL certificate, or both.\n" +"\n" +"An IPA service can be managed directly from a machine, provided that\n" +"machine has been given the correct permission. This is true even for\n" +"machines other than the one the service is associated with. For example,\n" +"requesting an SSL certificate using the host service principal credentials\n" +"of the host. To manage a service using host credentials you need to\n" +"kinit as the host:\n" +"\n" +" # kinit -kt /etc/krb5.keytab host/ipa.example.com@EXAMPLE.COM\n" +"\n" +"Adding an IPA service allows the associated service to request an SSL\n" +"certificate or keytab, but this is performed as a separate step; they\n" +"are not produced as a result of adding the service.\n" +"\n" +"Only the public aspect of a certificate is stored in a service record;\n" +"the private key is not stored.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new IPA service:\n" +" ipa service-add HTTP/web.example.com\n" +"\n" +" Allow a host to manage an IPA service certificate:\n" +" ipa service-add-host --hosts=web.example.com HTTP/web.example.com\n" +" ipa role-add-member --hosts=web.example.com certadmin\n" +"\n" +" Override a default list of supported PAC types for the service:\n" +" ipa service-mod HTTP/web.example.com --pac-type=MS-PAC\n" +"\n" +" A typical use case where overriding the PAC type is needed is NFS.\n" +" Currently the related code in the Linux kernel can only handle Kerberos\n" +" tickets up to a maximal size. Since the PAC data can become quite large " +"it\n" +" is recommended to set --pac-type=NONE for NFS services.\n" +"\n" +" Delete an IPA service:\n" +" ipa service-del HTTP/web.example.com\n" +"\n" +" Find all IPA services associated with a host:\n" +" ipa service-find web.example.com\n" +"\n" +" Find all HTTP services:\n" +" ipa service-find HTTP\n" +"\n" +" Disable the service Kerberos key and SSL certificate:\n" +" ipa service-disable HTTP/web.example.com\n" +"\n" +" Request a certificate for an IPA service:\n" +" ipa cert-request --principal=HTTP/web.example.com example.csr\n" +msgstr "" + +#: ipaserver/plugins/service.py:113 +msgid "" +"\n" +" Allow user to create a keytab:\n" +" ipa service-allow-create-keytab HTTP/web.example.com --users=tuser1\n" +msgstr "" + +#: ipaserver/plugins/service.py:116 +msgid "" +"\n" +" Generate and retrieve a keytab for an IPA service:\n" +" ipa-getkeytab -s ipa.example.com -p HTTP/web.example.com -k /etc/httpd/" +"httpd.keytab\n" +"\n" +msgstr "" + +#: ipaserver/plugins/service.py:128 ipaserver/plugins/host.py:202 +msgid "Keytab" +msgstr "" + +#: ipaserver/plugins/service.py:134 ipaserver/plugins/host.py:214 +msgid "Users allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/service.py:137 ipaserver/plugins/host.py:217 +msgid "Groups allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/service.py:140 ipaserver/plugins/host.py:220 +msgid "Hosts allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/service.py:143 ipaserver/plugins/host.py:223 +msgid "Host Groups allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/service.py:146 ipaserver/plugins/host.py:226 +msgid "Users allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/service.py:149 ipaserver/plugins/host.py:229 +msgid "Groups allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/service.py:152 ipaserver/plugins/host.py:232 +msgid "Hosts allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/service.py:155 ipaserver/plugins/host.py:235 +msgid "Host Groups allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/service.py:158 ipaserver/plugins/host.py:238 +#: ipaclient/frontend.py:81 +msgid "Failed allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/service.py:161 ipaserver/plugins/host.py:241 +#: ipaclient/frontend.py:85 +msgid "Failed allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/service.py:168 ipaclient/remote_plugins/2_114/host.py:176 +msgid "Requires pre-authentication" +msgstr "" + +#: ipaserver/plugins/service.py:169 ipaclient/remote_plugins/2_114/host.py:177 +msgid "Pre-authentication is required for the service" +msgstr "" + +#: ipaserver/plugins/service.py:174 ipaclient/remote_plugins/2_114/host.py:182 +msgid "Trusted for delegation" +msgstr "" + +#: ipaserver/plugins/service.py:175 ipaclient/remote_plugins/2_114/host.py:183 +msgid "Client credentials may be delegated to the service" +msgstr "" + +#: ipaserver/plugins/service.py:180 +msgid "Trusted to authenticate as user" +msgstr "" + +#: ipaserver/plugins/service.py:181 +msgid "The service is allowed to authenticate on behalf of a client" +msgstr "" + +#: ipaserver/plugins/service.py:215 +msgid "Malformed principal" +msgstr "" + +#: ipaserver/plugins/service.py:294 +msgid "{} is required by the IPA master" +msgstr "" + +#: ipaserver/plugins/service.py:368 +msgid "service" +msgstr "" + +#: ipaserver/plugins/service.py:369 +msgid "services" +msgstr "" + +#: ipaserver/plugins/service.py:466 ipaserver/plugins/internal.py:949 +#: ipaserver/plugins/caacl.py:236 +msgid "Services" +msgstr "" + +#: ipaserver/plugins/service.py:467 ipaserver/plugins/internal.py:1325 +#: ipaserver/plugins/internal.py:1650 ipaserver/plugins/dns.py:1311 +#: ipaserver/plugins/hbactest.py:285 ipaclient/remote_plugins/2_114/dns.py:721 +msgid "Service" +msgstr "" + +#: ipaserver/plugins/service.py:474 ipaserver/plugins/host.py:544 +#: ipaserver/plugins/baseuser.py:249 ipaclient/remote_plugins/2_114/host.py:146 +msgid "Principal name" +msgstr "" + +#: ipaserver/plugins/service.py:475 +msgid "Service principal" +msgstr "" + +#: ipaserver/plugins/service.py:484 ipaserver/plugins/host.py:551 +#: ipaserver/plugins/baseuser.py:257 +msgid "Principal alias" +msgstr "" + +#: ipaserver/plugins/service.py:485 +msgid "Service principal alias" +msgstr "" + +#: ipaserver/plugins/service.py:492 ipaserver/plugins/internal.py:638 +#: ipaserver/plugins/internal.py:722 ipaserver/plugins/idviews.py:1020 +#: ipaserver/plugins/ca.py:110 ipaserver/plugins/certmap.py:605 +#: ipaserver/plugins/host.py:502 ipaserver/plugins/baseuser.py:398 +#: ipaserver/plugins/baseuser.py:838 ipaserver/plugins/cert.py:351 +msgid "Certificate" +msgstr "" + +#: ipaserver/plugins/service.py:493 +msgid "Base-64 encoded service certificate" +msgstr "" + +#: ipaserver/plugins/service.py:497 ipaserver/plugins/internal.py:653 +#: ipaserver/plugins/internal.py:729 ipaserver/plugins/host.py:506 +#: ipaserver/plugins/baseuser.py:831 ipaserver/plugins/cert.py:363 +#: ipaserver/plugins/cert.py:1500 +msgid "Subject" +msgstr "" + +#: ipaserver/plugins/service.py:501 ipaserver/plugins/internal.py:696 +#: ipaserver/plugins/host.py:510 +msgid "Serial Number" +msgstr "" + +#: ipaserver/plugins/service.py:505 ipaserver/plugins/internal.py:697 +#: ipaserver/plugins/host.py:514 +msgid "Serial Number (hex)" +msgstr "" + +#: ipaserver/plugins/service.py:509 ipaserver/plugins/internal.py:726 +#: ipaserver/plugins/host.py:518 ipaserver/plugins/baseuser.py:824 +#: ipaserver/plugins/cert.py:423 +msgid "Issuer" +msgstr "" + +#: ipaserver/plugins/service.py:513 ipaserver/plugins/host.py:522 +#: ipaserver/plugins/cert.py:429 +msgid "Not Before" +msgstr "" + +#: ipaserver/plugins/service.py:517 ipaserver/plugins/host.py:526 +#: ipaserver/plugins/cert.py:434 +msgid "Not After" +msgstr "" + +#: ipaserver/plugins/service.py:521 ipaserver/plugins/host.py:530 +#: ipaserver/plugins/cert.py:439 +msgid "Fingerprint (SHA1)" +msgstr "" + +#: ipaserver/plugins/service.py:525 ipaserver/plugins/host.py:534 +#: ipaserver/plugins/cert.py:444 +msgid "Fingerprint (SHA256)" +msgstr "" + +#: ipaserver/plugins/service.py:529 ipaserver/plugins/internal.py:650 +#: ipaserver/plugins/internal.py:691 ipaserver/plugins/host.py:538 +#: ipaserver/plugins/cert.py:1281 +msgid "Revocation reason" +msgstr "" + +#: ipaserver/plugins/service.py:534 +msgid "PAC type" +msgstr "" + +#: ipaserver/plugins/service.py:535 +msgid "" +"Override default list of supported PAC types. Use 'NONE' to disable PAC " +"support for this service, e.g. this might be necessary for NFS services." +msgstr "" + +#: ipaserver/plugins/service.py:543 ipaserver/plugins/host.py:586 +msgid "Authentication Indicators" +msgstr "" + +#: ipaserver/plugins/service.py:544 ipaserver/plugins/host.py:587 +msgid "" +"Defines a whitelist for Authentication Indicators. Use 'otp' to allow OTP-" +"based 2FA authentications. Use 'radius' to allow RADIUS-based 2FA " +"authentications. Use 'pkinit' to allow PKINIT-based 2FA authentications. Use " +"'hardened' to allow brute-force hardened password authentication by SPAKE or " +"FAST. With no indicator specified, all authentication mechanisms are allowed." +msgstr "" + +#: ipaserver/plugins/service.py:569 +msgid "NONE value cannot be combined with other PAC types" +msgstr "" + +#: ipaserver/plugins/service.py:621 +msgid "Add a new IPA service." +msgstr "" + +#: ipaserver/plugins/service.py:623 ipaserver/plugins/service.py:691 +#, python-format +msgid "Added service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:629 +msgid "force principal name even if host not in DNS" +msgstr "" + +#: ipaserver/plugins/service.py:632 +msgid "Skip host check" +msgstr "" + +#: ipaserver/plugins/service.py:633 +msgid "" +"force service to be created even when host object does not exist to manage it" +msgstr "" + +#: ipaserver/plugins/service.py:651 ipaserver/plugins/service.py:759 +#, python-format +msgid "The host '%s' does not exist to add a service to." +msgstr "" + +#: ipaserver/plugins/service.py:689 +msgid "Add a new SMB service." +msgstr "" + +#: ipaserver/plugins/service.py:697 ipaserver/plugins/host.py:456 +msgid "Host name" +msgstr "" + +#: ipaserver/plugins/service.py:705 +msgid "SMB service NetBIOS name" +msgstr "" + +#: ipaserver/plugins/service.py:817 +msgid "Delete an IPA service." +msgstr "" + +#: ipaserver/plugins/service.py:819 +#, python-format +msgid "Deleted service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:837 +msgid "Modify an existing IPA service." +msgstr "" + +#: ipaserver/plugins/service.py:839 +#, python-format +msgid "Modified service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:886 +msgid "Search for IPA services." +msgstr "" + +#: ipaserver/plugins/service.py:889 +#, python-format +msgid "%(count)d service matched" +msgid_plural "%(count)d services matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/service.py:953 +msgid "Display information about an IPA service." +msgstr "" + +#: ipaserver/plugins/service.py:958 ipaserver/plugins/user.py:857 +#: ipaserver/plugins/host.py:1129 ipaclient/remote_plugins/2_114/host.py:1519 +msgid "file to store certificate in" +msgstr "" + +#: ipaserver/plugins/service.py:990 +msgid "Add hosts that can manage this service." +msgstr "" + +#: ipaserver/plugins/service.py:999 +msgid "Remove hosts that can manage this service." +msgstr "" + +#: ipaserver/plugins/service.py:1007 +msgid "" +"Allow users, groups, hosts or host groups to retrieve a keytab of this " +"service." +msgstr "" + +#: ipaserver/plugins/service.py:1027 +msgid "" +"Disallow users, groups, hosts or host groups to retrieve a keytab of this " +"service." +msgstr "" + +#: ipaserver/plugins/service.py:1046 +msgid "" +"Allow users, groups, hosts or host groups to create a keytab of this service." +msgstr "" + +#: ipaserver/plugins/service.py:1066 +msgid "" +"Disallow users, groups, hosts or host groups to create a keytab of this " +"service." +msgstr "" + +#: ipaserver/plugins/service.py:1085 +msgid "Disable the Kerberos key and SSL certificate of a service." +msgstr "" + +#: ipaserver/plugins/service.py:1088 +#, python-format +msgid "Disabled service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:1128 +msgid "Add new certificates to a service" +msgstr "" + +#: ipaserver/plugins/service.py:1129 +#, python-format +msgid "Added certificates to service principal \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:1135 +msgid "Remove certificates from a service" +msgstr "" + +#: ipaserver/plugins/service.py:1136 +#, python-format +msgid "Removed certificates from service principal \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:1152 +msgid "Add new principal alias to a service" +msgstr "" + +#: ipaserver/plugins/service.py:1153 +#, python-format +msgid "Added new aliases to the service principal \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/service.py:1164 +msgid "Remove principal alias from a service" +msgstr "" + +#: ipaserver/plugins/service.py:1165 +#, python-format +msgid "Removed aliases to the service principal \"%(value)s\"" msgstr "" #: ipaserver/plugins/ping.py:26 ipaclient/remote_plugins/2_114/ping.py:19 @@ -1775,975 +2752,755 @@ msgstr "" msgid "Ping a remote server." msgstr "" -#: ipaserver/plugins/domainlevel.py:18 +#: ipaserver/plugins/selinuxusermap.py:42 msgid "" "\n" -"Raise the IPA Domain Level.\n" +"SELinux User Mapping\n" +"\n" +"Map IPA users to SELinux users by host.\n" +"\n" +"Hosts, hostgroups, users and groups can be either defined within\n" +"the rule or it may point to an existing HBAC rule. When using\n" +"--hbacrule option to selinuxusermap-find an exact match is made on the\n" +"HBAC rule name, so only one or zero entries will be returned.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Create a rule, \"test1\", that sets all users to xguest_u:s0 on the host " +"\"server\":\n" +" ipa selinuxusermap-add --usercat=all --selinuxuser=xguest_u:s0 test1\n" +" ipa selinuxusermap-add-host --hosts=server.example.com test1\n" +"\n" +" Create a rule, \"test2\", that sets all users to guest_u:s0 and uses an " +"existing HBAC rule for users and hosts:\n" +" ipa selinuxusermap-add --usercat=all --hbacrule=webserver --" +"selinuxuser=guest_u:s0 test2\n" +"\n" +" Display the properties of a rule:\n" +" ipa selinuxusermap-show test2\n" +"\n" +" Create a rule for a specific user. This sets the SELinux context for\n" +" user john to unconfined_u:s0-s0:c0.c1023 on any machine:\n" +" ipa selinuxusermap-add --hostcat=all --selinuxuser=unconfined_u:s0-s0:c0." +"c1023 john_unconfined\n" +" ipa selinuxusermap-add-user --users=john john_unconfined\n" +"\n" +" Disable a rule:\n" +" ipa selinuxusermap-disable test1\n" +"\n" +" Enable a rule:\n" +" ipa selinuxusermap-enable test1\n" +"\n" +" Find a rule referencing a specific HBAC rule:\n" +" ipa selinuxusermap-find --hbacrule=allow_some\n" +"\n" +" Remove a rule:\n" +" ipa selinuxusermap-del john_unconfined\n" +"\n" +"SEEALSO:\n" +"\n" +" The list controlling the order in which the SELinux user map is applied\n" +" and the default SELinux user are available in the config-show command.\n" msgstr "" -#: ipaserver/plugins/domainlevel.py:27 -msgid "Current domain level:" +#: ipaserver/plugins/selinuxusermap.py:89 +msgid "HBAC rule and local members cannot both be set" msgstr "" -#: ipaserver/plugins/domainlevel.py:69 +#: ipaserver/plugins/selinuxusermap.py:128 +msgid "Invalid SELinux user name, must match {}" +msgstr "" + +#: ipaserver/plugins/selinuxusermap.py:142 #, python-brace-format -msgid "" -"Domain Level cannot be raised to {0}, existing replication conflicts have to " -"be resolved." +msgid "Invalid MLS value, must match {mls}, where max level {mls_max}" msgstr "" -#: ipaserver/plugins/domainlevel.py:93 -msgid "Query current Domain Level." -msgstr "" - -#: ipaserver/plugins/domainlevel.py:112 -msgid "Server does not support domain level functionality" -msgstr "" - -#: ipaserver/plugins/domainlevel.py:117 -msgid "Change current Domain Level." -msgstr "" - -#: ipaserver/plugins/domainlevel.py:124 ipaserver/plugins/internal.py:787 -#: ipaserver/plugins/internal.py:788 -msgid "Domain Level" -msgstr "" - -#: ipaserver/plugins/domainlevel.py:147 -msgid "Domain Level cannot be lowered." -msgstr "" - -#: ipaserver/plugins/domainlevel.py:155 +#: ipaserver/plugins/selinuxusermap.py:147 #, python-brace-format -msgid "Domain Level cannot be raised to {0}, server {1} does not support it." +msgid "Invalid MCS value, must match {mcs}, where max category {mcs_max}" msgstr "" -#: ipaserver/plugins/host.py:76 -msgid "" -"\n" -"Hosts/Machines\n" -"\n" -"A host represents a machine. It can be used in a number of contexts:\n" -"- service entries are associated with a host\n" -"- a host stores the host/ service principal\n" -"- a host can be used in Host-based Access Control (HBAC) rules\n" -"- every enrolled client generates a host entry\n" +#: ipaserver/plugins/selinuxusermap.py:161 +msgid "SELinux user map list not found in configuration" msgstr "" -#: ipaserver/plugins/host.py:84 -msgid "" -"\n" -"ENROLLMENT:\n" -"\n" -"There are three enrollment scenarios when enrolling a new client:\n" -"\n" -"1. You are enrolling as a full administrator. The host entry may exist\n" -" or not. A full administrator is a member of the hostadmin role\n" -" or the admins group.\n" -"2. You are enrolling as a limited administrator. The host must already\n" -" exist. A limited administrator is a member a role with the\n" -" Host Enrollment privilege.\n" -"3. The host has been created with a one-time password.\n" +#: ipaserver/plugins/selinuxusermap.py:166 +#, python-format +msgid "SELinux user %(user)s not found in ordering list (in config)" msgstr "" -#: ipaserver/plugins/host.py:96 -msgid "" -"\n" -"RE-ENROLLMENT:\n" -"\n" -"Host that has been enrolled at some point, and lost its configuration (e.g. " -"VM\n" -"destroyed) can be re-enrolled.\n" -"\n" -"For more information, consult the manual pages for ipa-client-install.\n" -"\n" -"A host can optionally store information such as where it is located,\n" -"the OS that it runs, etc.\n" +#: ipaserver/plugins/selinuxusermap.py:176 +msgid "SELinux User Map rule" msgstr "" -#: ipaserver/plugins/host.py:108 -msgid "" -"\n" -" Add a new host:\n" -" ipa host-add --location=\"3rd floor lab\" --locality=Dallas test.example." -"com\n" +#: ipaserver/plugins/selinuxusermap.py:177 +msgid "SELinux User Map rules" msgstr "" -#: ipaserver/plugins/host.py:111 -msgid "" -"\n" -" Delete a host:\n" -" ipa host-del test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:233 +msgid "SELinux User Maps" msgstr "" -#: ipaserver/plugins/host.py:114 -msgid "" -"\n" -" Add a new host with a one-time password:\n" -" ipa host-add --os='Fedora 12' --password=Secret123 test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:234 +msgid "SELinux User Map" msgstr "" -#: ipaserver/plugins/host.py:117 -msgid "" -"\n" -" Add a new host with a random one-time password:\n" -" ipa host-add --os='Fedora 12' --random test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:239 ipaserver/plugins/sudorule.py:227 +#: ipaserver/plugins/hbacrule.py:207 ipaserver/plugins/certmap.py:273 +msgid "Rule name" msgstr "" -#: ipaserver/plugins/host.py:120 -msgid "" -"\n" -" Modify information about a host:\n" -" ipa host-mod --os='Fedora 12' test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:244 +msgid "SELinux User" msgstr "" -#: ipaserver/plugins/host.py:123 -msgid "" -"\n" -" Remove SSH public keys of a host and update DNS to reflect this change:\n" -" ipa host-mod --sshpubkey= --updatedns test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:248 ipaserver/plugins/hbacrule.py:202 +msgid "HBAC Rule" msgstr "" -#: ipaserver/plugins/host.py:126 -msgid "" -"\n" -" Disable the host Kerberos key, SSL certificate and all of its services:\n" -" ipa host-disable test.example.com\n" +#: ipaserver/plugins/selinuxusermap.py:249 +msgid "HBAC Rule that defines the users, groups and hostgroups" msgstr "" -#: ipaserver/plugins/host.py:129 -msgid "" -"\n" -" Add a host that can manage this host's keytab and certificate:\n" -" ipa host-add-managedby --hosts=test2 test\n" +#: ipaserver/plugins/selinuxusermap.py:268 ipaserver/plugins/sudorule.py:235 +#: ipaserver/plugins/internal.py:1901 ipaserver/plugins/hbacrule.py:256 +#: ipaserver/plugins/certmap.py:310 ipaserver/plugins/caacl.py:178 +msgid "Enabled" msgstr "" -#: ipaserver/plugins/host.py:132 -msgid "" -"\n" -" Allow user to create a keytab:\n" -" ipa host-allow-create-keytab test2 --users=tuser1\n" +#: ipaserver/plugins/selinuxusermap.py:272 ipaserver/plugins/sudorule.py:276 +#: ipaserver/plugins/internal.py:1183 ipaserver/plugins/hbacrule.py:260 +#: ipaserver/plugins/user.py:154 ipaserver/plugins/automember.py:697 +#: ipaserver/plugins/baseuser.py:196 ipaserver/plugins/caacl.py:220 +msgid "Users" msgstr "" -#: ipaserver/plugins/host.py:202 ipaserver/plugins/service.py:128 -msgid "Keytab" +#: ipaserver/plugins/selinuxusermap.py:276 ipaserver/plugins/sudorule.py:280 +#: ipaserver/plugins/internal.py:872 ipaserver/plugins/internal.py:1182 +#: ipaserver/plugins/hbacrule.py:264 ipaserver/plugins/caacl.py:224 +#: ipaserver/plugins/group.py:314 +msgid "User Groups" msgstr "" -#: ipaserver/plugins/host.py:211 ipaclient/frontend.py:76 -msgid "Failed managedby" -msgstr "" - -#: ipaserver/plugins/host.py:214 ipaserver/plugins/service.py:134 -msgid "Users allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/host.py:217 ipaserver/plugins/service.py:137 -msgid "Groups allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/host.py:220 ipaserver/plugins/service.py:140 -msgid "Hosts allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/host.py:223 ipaserver/plugins/service.py:143 -msgid "Host Groups allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/host.py:226 ipaserver/plugins/service.py:146 -msgid "Users allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/host.py:229 ipaserver/plugins/service.py:149 -msgid "Groups allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/host.py:232 ipaserver/plugins/service.py:152 -msgid "Hosts allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/host.py:235 ipaserver/plugins/service.py:155 -msgid "Host Groups allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/host.py:238 ipaserver/plugins/service.py:158 -#: ipaclient/frontend.py:81 -msgid "Failed allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/host.py:241 ipaserver/plugins/service.py:161 -#: ipaclient/frontend.py:85 -msgid "Failed allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/host.py:275 ipaserver/plugins/cert.py:1011 -#: ipaserver/plugins/sudorule.py:433 -msgid "host" -msgstr "" - -#: ipaserver/plugins/host.py:276 ipaserver/plugins/sudorule.py:433 -#: ipaserver/plugins/idviews.py:430 ipaserver/plugins/idviews.py:473 -msgid "hosts" -msgstr "" - -#: ipaserver/plugins/host.py:450 ipaserver/plugins/selinuxusermap.py:280 -#: ipaserver/plugins/hbacrule.py:268 ipaserver/plugins/internal.py:1153 -#: ipaserver/plugins/automember.py:702 ipaserver/plugins/sudorule.py:289 +#: ipaserver/plugins/selinuxusermap.py:280 ipaserver/plugins/sudorule.py:289 +#: ipaserver/plugins/internal.py:1157 ipaserver/plugins/hbacrule.py:268 +#: ipaserver/plugins/automember.py:702 ipaserver/plugins/host.py:450 #: ipaserver/plugins/caacl.py:228 msgid "Hosts" msgstr "" -#: ipaserver/plugins/host.py:451 ipaserver/plugins/internal.py:1151 -#: ipaserver/plugins/internal.py:1272 -msgid "Host" +#: ipaserver/plugins/selinuxusermap.py:284 ipaserver/plugins/sudorule.py:293 +#: ipaserver/plugins/internal.py:1066 ipaserver/plugins/internal.py:1156 +#: ipaserver/plugins/hbacrule.py:272 ipaserver/plugins/hostgroup.py:178 +#: ipaserver/plugins/caacl.py:232 +msgid "Host Groups" msgstr "" -#: ipaserver/plugins/host.py:456 ipaserver/plugins/service.py:694 -msgid "Host name" -msgstr "" - -#: ipaserver/plugins/host.py:463 ipaclient/remote_plugins/2_114/host.py:95 -msgid "A description of this host" -msgstr "" - -#: ipaserver/plugins/host.py:467 ipaclient/remote_plugins/2_114/host.py:100 -msgid "Locality" -msgstr "" - -#: ipaserver/plugins/host.py:468 ipaclient/remote_plugins/2_114/host.py:101 -msgid "Host locality (e.g. \"Baltimore, MD\")" -msgstr "" - -#: ipaserver/plugins/host.py:472 ipaserver/plugins/automount.py:252 -#: ipaserver/plugins/server.py:132 -msgid "Location" -msgstr "" - -#: ipaserver/plugins/host.py:473 ipaclient/remote_plugins/2_114/host.py:107 -msgid "Host location (e.g. \"Lab 2\")" -msgstr "" - -#: ipaserver/plugins/host.py:477 ipaclient/remote_plugins/2_114/host.py:112 -msgid "Platform" -msgstr "" - -#: ipaserver/plugins/host.py:478 ipaclient/remote_plugins/2_114/host.py:113 -msgid "Host hardware platform (e.g. \"Lenovo T61\")" -msgstr "" - -#: ipaserver/plugins/host.py:482 ipaclient/remote_plugins/2_114/host.py:118 -msgid "Operating system" -msgstr "" - -#: ipaserver/plugins/host.py:483 ipaclient/remote_plugins/2_114/host.py:119 -msgid "Host operating system and version (e.g. \"Fedora 9\")" -msgstr "" - -#: ipaserver/plugins/host.py:487 ipaclient/remote_plugins/2_114/host.py:124 -msgid "User password" -msgstr "" - -#: ipaserver/plugins/host.py:488 ipaclient/remote_plugins/2_114/host.py:125 -msgid "Password used in bulk enrollment" -msgstr "" - -#: ipaserver/plugins/host.py:492 ipaclient/remote_plugins/2_114/host.py:130 -msgid "Generate a random password to be used in bulk enrollment" -msgstr "" - -#: ipaserver/plugins/host.py:497 ipaserver/plugins/baseuser.py:289 -msgid "Random password" -msgstr "" - -#: ipaserver/plugins/host.py:502 ipaserver/plugins/baseuser.py:398 -#: ipaserver/plugins/baseuser.py:838 ipaserver/plugins/certmap.py:605 -#: ipaserver/plugins/ca.py:110 ipaserver/plugins/internal.py:634 -#: ipaserver/plugins/internal.py:718 ipaserver/plugins/cert.py:351 -#: ipaserver/plugins/service.py:489 ipaserver/plugins/idviews.py:980 -msgid "Certificate" -msgstr "" - -#: ipaserver/plugins/host.py:503 -msgid "Base-64 encoded host certificate" -msgstr "" - -#: ipaserver/plugins/host.py:506 ipaserver/plugins/baseuser.py:831 -#: ipaserver/plugins/internal.py:649 ipaserver/plugins/internal.py:725 -#: ipaserver/plugins/cert.py:363 ipaserver/plugins/cert.py:1485 -#: ipaserver/plugins/service.py:494 -msgid "Subject" -msgstr "" - -#: ipaserver/plugins/host.py:510 ipaserver/plugins/internal.py:692 -#: ipaserver/plugins/service.py:498 -msgid "Serial Number" -msgstr "" - -#: ipaserver/plugins/host.py:514 ipaserver/plugins/internal.py:693 -#: ipaserver/plugins/service.py:502 -msgid "Serial Number (hex)" -msgstr "" - -#: ipaserver/plugins/host.py:518 ipaserver/plugins/baseuser.py:824 -#: ipaserver/plugins/internal.py:722 ipaserver/plugins/cert.py:423 -#: ipaserver/plugins/service.py:506 -msgid "Issuer" -msgstr "" - -#: ipaserver/plugins/host.py:522 ipaserver/plugins/cert.py:429 -#: ipaserver/plugins/service.py:510 -msgid "Not Before" -msgstr "" - -#: ipaserver/plugins/host.py:526 ipaserver/plugins/cert.py:434 -#: ipaserver/plugins/service.py:514 -msgid "Not After" -msgstr "" - -#: ipaserver/plugins/host.py:530 ipaserver/plugins/cert.py:439 -#: ipaserver/plugins/service.py:518 -msgid "Fingerprint (SHA1)" -msgstr "" - -#: ipaserver/plugins/host.py:534 ipaserver/plugins/cert.py:444 -#: ipaserver/plugins/service.py:522 -msgid "Fingerprint (SHA256)" -msgstr "" - -#: ipaserver/plugins/host.py:538 ipaserver/plugins/internal.py:646 -#: ipaserver/plugins/internal.py:687 ipaserver/plugins/cert.py:1266 -#: ipaserver/plugins/service.py:526 -msgid "Revocation reason" -msgstr "" - -#: ipaserver/plugins/host.py:544 ipaserver/plugins/baseuser.py:249 -#: ipaserver/plugins/service.py:471 ipaclient/remote_plugins/2_114/host.py:146 -msgid "Principal name" -msgstr "" - -#: ipaserver/plugins/host.py:551 ipaserver/plugins/baseuser.py:257 -#: ipaserver/plugins/service.py:481 -msgid "Principal alias" -msgstr "" - -#: ipaserver/plugins/host.py:560 ipaclient/remote_plugins/2_114/host.py:152 -msgid "MAC address" -msgstr "" - -#: ipaserver/plugins/host.py:561 ipaclient/remote_plugins/2_114/host.py:153 -msgid "Hardware MAC address(es) on this host" -msgstr "" - -#: ipaserver/plugins/host.py:565 ipaserver/plugins/baseuser.py:348 -#: ipaserver/plugins/idviews.py:974 ipaclient/remote_plugins/2_114/host.py:159 -msgid "SSH public key" -msgstr "" - -#: ipaserver/plugins/host.py:570 ipaserver/plugins/baseuser.py:353 -msgid "SSH public key fingerprint" -msgstr "" - -#: ipaserver/plugins/host.py:575 ipaserver/plugins/baseuser.py:365 -msgid "Class" -msgstr "" - -#: ipaserver/plugins/host.py:576 ipaclient/remote_plugins/2_114/host.py:166 -msgid "" -"Host category (semantics placed on this attribute are for local " -"interpretation)" -msgstr "" - -#: ipaserver/plugins/host.py:580 ipaserver/plugins/internal.py:1110 -msgid "Assigned ID View" -msgstr "" - -#: ipaserver/plugins/host.py:586 ipaserver/plugins/service.py:540 -msgid "Authentication Indicators" -msgstr "" - -#: ipaserver/plugins/host.py:587 ipaserver/plugins/service.py:541 -msgid "" -"Defines a whitelist for Authentication Indicators. Use 'otp' to allow OTP-" -"based 2FA authentications. Use 'radius' to allow RADIUS-based 2FA " -"authentications. Use 'pkinit' to allow PKINIT-based 2FA authentications. Use " -"'hardened' to allow brute-force hardened password authentication by SPAKE or " -"FAST. With no indicator specified, all authentication mechanisms are allowed." -msgstr "" - -#: ipaserver/plugins/host.py:654 ipaclient/remote_plugins/2_114/host.py:288 -msgid "Add a new host." -msgstr "" - -#: ipaserver/plugins/host.py:657 +#: ipaserver/plugins/selinuxusermap.py:309 #, python-format -msgid "Added host \"%(value)s\"" +msgid "HBAC rule %(rule)s not found" msgstr "" -#: ipaserver/plugins/host.py:661 ipaserver/plugins/permission.py:1059 -#: ipaserver/plugins/realmdomains.py:151 ipaserver/plugins/dns.py:2867 -#: ipaserver/plugins/dns.py:3552 ipaserver/plugins/service.py:625 -msgid "Force" +#: ipaserver/plugins/selinuxusermap.py:328 +msgid "Create a new SELinux User Map." msgstr "" -#: ipaserver/plugins/host.py:662 ipaclient/remote_plugins/2_114/host.py:416 -msgid "force host name even if not in DNS" -msgstr "" - -#: ipaserver/plugins/host.py:665 ipaclient/remote_plugins/2_114/host.py:422 -msgid "skip reverse DNS detection" -msgstr "" - -#: ipaserver/plugins/host.py:668 ipaclient/remote_plugins/2_114/host.py:430 -msgid "Add the host to DNS with this IP address" -msgstr "" - -#: ipaserver/plugins/host.py:669 ipaserver/plugins/dns.py:947 -#: ipaserver/plugins/dns.py:970 ipaclient/remote_plugins/2_114/host.py:429 -msgid "IP Address" -msgstr "" - -#: ipaserver/plugins/host.py:681 ipaserver/plugins/stageuser.py:329 -#: ipaserver/plugins/stageuser.py:533 ipaserver/plugins/user.py:516 -#: ipaserver/plugins/baseuser.py:567 +#: ipaserver/plugins/selinuxusermap.py:330 #, python-format -msgid "can be at most %(len)d characters" +msgid "Added SELinux User Map \"%(value)s\"" msgstr "" -#: ipaserver/plugins/host.py:777 ipaclient/remote_plugins/2_114/host.py:709 -msgid "Delete a host." +#: ipaserver/plugins/selinuxusermap.py:366 +msgid "Delete a SELinux User Map." msgstr "" -#: ipaserver/plugins/host.py:779 +#: ipaserver/plugins/selinuxusermap.py:368 #, python-format -msgid "Deleted host \"%(value)s\"" +msgid "Deleted SELinux User Map \"%(value)s\"" msgstr "" -#: ipaserver/plugins/host.py:784 -msgid "Remove A, AAAA, SSHFP and PTR records of the host(s) managed by IPA DNS" +#: ipaserver/plugins/selinuxusermap.py:374 +msgid "Modify a SELinux User Map." msgstr "" -#: ipaserver/plugins/host.py:863 -msgid "No A, AAAA, SSHFP or PTR records found." -msgstr "" - -#: ipaserver/plugins/host.py:876 ipaclient/remote_plugins/2_114/host.py:1244 -msgid "Modify information about a host." -msgstr "" - -#: ipaserver/plugins/host.py:879 +#: ipaserver/plugins/selinuxusermap.py:376 #, python-format -msgid "Modified host \"%(value)s\"" +msgid "Modified SELinux User Map \"%(value)s\"" msgstr "" -#: ipaserver/plugins/host.py:884 ipaclient/remote_plugins/2_114/host.py:1393 -msgid "Update DNS entries" +#: ipaserver/plugins/selinuxusermap.py:446 +msgid "Search for SELinux User Maps." msgstr "" -#: ipaserver/plugins/host.py:899 -msgid "Password cannot be set on enrolled host." -msgstr "" - -#: ipaserver/plugins/host.py:903 -msgid "cn is immutable" -msgstr "" - -#: ipaserver/plugins/host.py:1023 ipaclient/remote_plugins/2_114/host.py:962 -msgid "Search for hosts." -msgstr "" - -#: ipaserver/plugins/host.py:1027 +#: ipaserver/plugins/selinuxusermap.py:449 #, python-format -msgid "%(count)d host matched" -msgid_plural "%(count)d hosts matched" +msgid "%(count)d SELinux User Map matched" +msgid_plural "%(count)d SELinux User Maps matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/host.py:1124 ipaclient/remote_plugins/2_114/host.py:1498 -msgid "Display information about a host." +#: ipaserver/plugins/selinuxusermap.py:478 +msgid "Display the properties of a SELinux User Map rule." msgstr "" -#: ipaserver/plugins/host.py:1129 ipaserver/plugins/user.py:857 -#: ipaserver/plugins/service.py:955 ipaclient/remote_plugins/2_114/host.py:1519 -msgid "file to store certificate in" +#: ipaserver/plugins/selinuxusermap.py:489 +msgid "Enable an SELinux User Map rule." msgstr "" -#: ipaserver/plugins/host.py:1179 ipaclient/remote_plugins/2_114/host.py:754 -msgid "Disable the Kerberos key, SSL certificate and all services of a host." -msgstr "" - -#: ipaserver/plugins/host.py:1182 +#: ipaserver/plugins/selinuxusermap.py:491 #, python-format -msgid "Disabled host \"%(value)s\"" +msgid "Enabled SELinux User Map \"%(value)s\"" msgstr "" -#: ipaserver/plugins/host.py:1255 ipaclient/remote_plugins/2_114/host.py:472 -msgid "Add hosts that can manage this host." +#: ipaserver/plugins/selinuxusermap.py:519 +msgid "Disable an SELinux User Map rule." msgstr "" -#: ipaserver/plugins/host.py:1269 ipaclient/remote_plugins/2_114/host.py:1437 -msgid "Remove hosts that can manage this host." -msgstr "" - -#: ipaserver/plugins/host.py:1282 ipaclient/remote_plugins/2_114/host.py:621 -msgid "" -"Allow users, groups, hosts or host groups to retrieve a keytab of this host." -msgstr "" - -#: ipaserver/plugins/host.py:1301 ipaclient/remote_plugins/2_114/host.py:874 -msgid "" -"Disallow users, groups, hosts or host groups to retrieve a keytab of this " -"host." -msgstr "" - -#: ipaserver/plugins/host.py:1319 ipaclient/remote_plugins/2_114/host.py:533 -msgid "" -"Allow users, groups, hosts or host groups to create a keytab of this host." -msgstr "" - -#: ipaserver/plugins/host.py:1338 ipaclient/remote_plugins/2_114/host.py:786 -msgid "" -"Disallow users, groups, hosts or host groups to create a keytab of this host." -msgstr "" - -#: ipaserver/plugins/host.py:1356 ipaclient/remote_plugins/2_156/host.py:474 -msgid "Add certificates to host entry" -msgstr "" - -#: ipaserver/plugins/host.py:1357 +#: ipaserver/plugins/selinuxusermap.py:521 #, python-format -msgid "Added certificates to host \"%(value)s\"" +msgid "Disabled SELinux User Map \"%(value)s\"" msgstr "" -#: ipaserver/plugins/host.py:1363 ipaclient/remote_plugins/2_156/host.py:1501 -msgid "Remove certificates from host entry" +#: ipaserver/plugins/selinuxusermap.py:549 +msgid "Add users and groups to an SELinux User Map rule." msgstr "" -#: ipaserver/plugins/host.py:1364 +#: ipaserver/plugins/selinuxusermap.py:564 ipaserver/plugins/sudorule.py:593 +#: ipaserver/plugins/hbacrule.py:518 ipaserver/plugins/caacl.py:397 +msgid "users cannot be added when user category='all'" +msgstr "" + +#: ipaserver/plugins/selinuxusermap.py:573 +msgid "Remove users and groups from an SELinux User Map rule." +msgstr "" + +#: ipaserver/plugins/selinuxusermap.py:582 +msgid "Add target hosts and hostgroups to an SELinux User Map rule." +msgstr "" + +#: ipaserver/plugins/selinuxusermap.py:597 ipaserver/plugins/sudorule.py:647 +#: ipaserver/plugins/hbacrule.py:549 ipaserver/plugins/caacl.py:429 +msgid "hosts cannot be added when host category='all'" +msgstr "" + +#: ipaserver/plugins/selinuxusermap.py:606 +msgid "Remove target hosts and hostgroups from an SELinux User Map rule." +msgstr "" + +#: ipaserver/plugins/serverrole.py:13 +msgid "" +"\n" +"IPA server roles\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:15 +msgid "" +"\n" +"Get status of roles (DNS server, CA, etc.) provided by IPA masters.\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:17 +msgid "" +"\n" +"The status of a role is either enabled, configured, or absent.\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:21 +msgid "" +"\n" +" Show status of 'DNS server' role on a server:\n" +" ipa server-role-show ipa.example.com \"DNS server\"\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:24 +msgid "" +"\n" +" Show status of all roles containing 'AD' on a server:\n" +" ipa server-role-find --server ipa.example.com --role=\"AD trust " +"controller\"\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:27 +msgid "" +"\n" +" Show status of all configured roles on a server:\n" +" ipa server-role-find ipa.example.com\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:30 +msgid "" +"\n" +" Show implicit IPA master role:\n" +" ipa server-role-find --include-master\n" +msgstr "" + +#: ipaserver/plugins/serverrole.py:46 +msgid "server role" +msgstr "" + +#: ipaserver/plugins/serverrole.py:47 +msgid "server roles" +msgstr "" + +#: ipaserver/plugins/serverrole.py:51 +msgid "IPA Server Roles" +msgstr "" + +#: ipaserver/plugins/serverrole.py:52 +msgid "IPA Server Role" +msgstr "" + +#: ipaserver/plugins/serverrole.py:65 +msgid "IPA server role name" +msgstr "" + +#: ipaserver/plugins/serverrole.py:71 +msgid "Role status" +msgstr "" + +#: ipaserver/plugins/serverrole.py:72 +msgid "Status of the role" +msgstr "" + +#: ipaserver/plugins/serverrole.py:89 +msgid "Show role status on a server" +msgstr "" + +#: ipaserver/plugins/serverrole.py:113 +msgid "Find a server role on a server(s)" +msgstr "" + +#: ipaserver/plugins/serverrole.py:118 #, python-format -msgid "Removed certificates from host \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/host.py:1380 -msgid "Add new principal alias to host entry" -msgstr "" - -#: ipaserver/plugins/host.py:1381 -#, python-format -msgid "Added new aliases to host \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/host.py:1392 -msgid "Remove principal alias from a host entry" -msgstr "" - -#: ipaserver/plugins/host.py:1393 -#, python-format -msgid "Removed aliases from host \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/topology.py:24 -msgid "" -"\n" -"Topology\n" -"\n" -"Management of a replication topology at domain level 1.\n" -msgstr "" - -#: ipaserver/plugins/topology.py:28 -msgid "" -"\n" -"IPA server's data is stored in LDAP server in two suffixes:\n" -"* domain suffix, e.g., 'dc=example,dc=com', contains all domain related " -"data\n" -"* ca suffix, 'o=ipaca', is present only on server with CA installed. It\n" -" contains data for Certificate Server component\n" -msgstr "" - -#: ipaserver/plugins/topology.py:33 -msgid "" -"\n" -"Data stored on IPA servers is replicated to other IPA servers. The way it " -"is\n" -"replicated is defined by replication agreements. Replication agreements " -"needs\n" -"to be set for both suffixes separately. On domain level 0 they are managed\n" -"using ipa-replica-manage and ipa-csreplica-manage tools. With domain level " -"1\n" -"they are managed centrally using `ipa topology*` commands.\n" -msgstr "" - -#: ipaserver/plugins/topology.py:39 -msgid "" -"\n" -"Agreements are represented by topology segments. By default topology " -"segment\n" -"represents 2 replication agreements - one for each direction, e.g., A to B " -"and\n" -"B to A. Creation of unidirectional segments is not allowed.\n" -msgstr "" - -#: ipaserver/plugins/topology.py:43 -msgid "" -"\n" -"To verify that no server is disconnected in the topology of the given " -"suffix,\n" -"use:\n" -" ipa topologysuffix-verify $suffix\n" -msgstr "" - -#: ipaserver/plugins/topology.py:47 -msgid "" -"\n" -"\n" -"Examples:\n" -" Find all IPA servers:\n" -" ipa server-find\n" -msgstr "" - -#: ipaserver/plugins/topology.py:52 -msgid "" -"\n" -" Find all suffixes:\n" -" ipa topologysuffix-find\n" -msgstr "" - -#: ipaserver/plugins/topology.py:55 -msgid "" -"\n" -" Add topology segment to 'domain' suffix:\n" -" ipa topologysegment-add domain --left IPA_SERVER_A --right IPA_SERVER_B\n" -msgstr "" - -#: ipaserver/plugins/topology.py:58 -msgid "" -"\n" -" Add topology segment to 'ca' suffix:\n" -" ipa topologysegment-add ca --left IPA_SERVER_A --right IPA_SERVER_B\n" -msgstr "" - -#: ipaserver/plugins/topology.py:61 -msgid "" -"\n" -" List all topology segments in 'domain' suffix:\n" -" ipa topologysegment-find domain\n" -msgstr "" - -#: ipaserver/plugins/topology.py:64 -msgid "" -"\n" -" List all topology segments in 'ca' suffix:\n" -" ipa topologysegment-find ca\n" -msgstr "" - -#: ipaserver/plugins/topology.py:67 -msgid "" -"\n" -" Delete topology segment in 'domain' suffix:\n" -" ipa topologysegment-del domain segment_name\n" -msgstr "" - -#: ipaserver/plugins/topology.py:70 -msgid "" -"\n" -" Delete topology segment in 'ca' suffix:\n" -" ipa topologysegment-del ca segment_name\n" -msgstr "" - -#: ipaserver/plugins/topology.py:73 -msgid "" -"\n" -" Verify topology of 'domain' suffix:\n" -" ipa topologysuffix-verify domain\n" -msgstr "" - -#: ipaserver/plugins/topology.py:76 -msgid "" -"\n" -" Verify topology of 'ca' suffix:\n" -" ipa topologysuffix-verify ca\n" -msgstr "" - -#: ipaserver/plugins/topology.py:92 -#, python-brace-format -msgid "Topology management requires minimum domain level {0} " -msgstr "" - -#: ipaserver/plugins/topology.py:104 -msgid "segment" -msgstr "" - -#: ipaserver/plugins/topology.py:105 -msgid "segments" -msgstr "" - -#: ipaserver/plugins/topology.py:119 -msgid "Topology Segments" -msgstr "" - -#: ipaserver/plugins/topology.py:120 -msgid "Topology Segment" -msgstr "" - -#: ipaserver/plugins/topology.py:128 -msgid "Segment name" -msgstr "" - -#: ipaserver/plugins/topology.py:132 -msgid "Arbitrary string identifying the segment" -msgstr "" - -#: ipaserver/plugins/topology.py:140 -msgid "Left node" -msgstr "" - -#: ipaserver/plugins/topology.py:142 -msgid "Left replication node - an IPA server" -msgstr "" - -#: ipaserver/plugins/topology.py:151 -msgid "Right node" -msgstr "" - -#: ipaserver/plugins/topology.py:153 -msgid "Right replication node - an IPA server" -msgstr "" - -#: ipaserver/plugins/topology.py:159 -msgid "Connectivity" -msgstr "" - -#: ipaserver/plugins/topology.py:163 -msgid "Direction of replication between left and right replication node" -msgstr "" - -#: ipaserver/plugins/topology.py:170 -msgid "Attributes to strip" -msgstr "" - -#: ipaserver/plugins/topology.py:172 -msgid "" -"A space separated list of attributes which are removed from replication " -"updates." -msgstr "" - -#: ipaserver/plugins/topology.py:179 -msgid "" -"Attributes that are not replicated to a consumer server during a fractional " -"update. E.g., `(objectclass=*) $ EXCLUDE accountlockout memberof" -msgstr "" - -#: ipaserver/plugins/topology.py:186 -msgid "Attributes for total update" -msgstr "" - -#: ipaserver/plugins/topology.py:187 -msgid "" -"Attributes that are not replicated to a consumer server during a total " -"update. E.g. (objectclass=*) $ EXCLUDE accountlockout" -msgstr "" - -#: ipaserver/plugins/topology.py:194 -msgid "Session timeout" -msgstr "" - -#: ipaserver/plugins/topology.py:196 -msgid "" -"Number of seconds outbound LDAP operations waits for a response from the " -"remote replica before timing out and failing" -msgstr "" - -#: ipaserver/plugins/topology.py:203 -msgid "Replication agreement enabled" -msgstr "" - -#: ipaserver/plugins/topology.py:204 -msgid "" -"Whether a replication agreement is active, meaning whether replication is " -"occurring per that agreement" -msgstr "" - -#: ipaserver/plugins/topology.py:226 -#, python-format -msgid "left node is not a topology node: %(leftnode)s" -msgstr "" - -#: ipaserver/plugins/topology.py:233 -#, python-format -msgid "right node is not a topology node: %(rightnode)s" -msgstr "" - -#: ipaserver/plugins/topology.py:250 -msgid "left node and right node must not be the same" -msgstr "" - -#: ipaserver/plugins/topology.py:261 -#, python-brace-format -msgid "left node ({host}) does not support suffix '{suff}'" -msgstr "" - -#: ipaserver/plugins/topology.py:269 -#, python-brace-format -msgid "right node ({host}) does not support suffix '{suff}'" -msgstr "" - -#: ipaserver/plugins/topology.py:277 -msgid "Search for topology segments." -msgstr "" - -#: ipaserver/plugins/topology.py:280 -#, python-format -msgid "%(count)d segment matched" -msgid_plural "%(count)d segments matched" +msgid "%(count)s server role matched" +msgid_plural "%(count)s server roles matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/topology.py:287 -msgid "Add a new segment." +#: ipaserver/plugins/serverrole.py:139 +msgid "Include IPA master entries" msgstr "" -#: ipaserver/plugins/topology.py:289 -#, python-format -msgid "Added segment \"%(value)s\"" +#: ipaserver/plugins/serverrole.py:192 +msgid "IPA role name" msgstr "" -#: ipaserver/plugins/topology.py:300 -msgid "Delete a segment." -msgstr "" - -#: ipaserver/plugins/topology.py:302 -#, python-format -msgid "Deleted segment \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/topology.py:312 -msgid "Modify a segment." -msgstr "" - -#: ipaserver/plugins/topology.py:314 -#, python-format -msgid "Modified segment \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/topology.py:325 +#: ipaserver/plugins/sudorule.py:42 msgid "" -"Request a full re-initialization of the node retrieving data from the other " -"node." +"\n" +"Sudo Rules\n" msgstr "" -#: ipaserver/plugins/topology.py:329 +#: ipaserver/plugins/sudorule.py:44 +msgid "" +"\n" +"Sudo (su \"do\") allows a system administrator to delegate authority to\n" +"give certain users (or groups of users) the ability to run some (or all)\n" +"commands as root or another user while providing an audit trail of the\n" +"commands and their arguments.\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:49 +msgid "" +"\n" +"FreeIPA provides a means to configure the various aspects of Sudo:\n" +" Users: The user(s)/group(s) allowed to invoke Sudo.\n" +" Hosts: The host(s)/hostgroup(s) which the user is allowed to to invoke " +"Sudo.\n" +" Allow Command: The specific command(s) permitted to be run via Sudo.\n" +" Deny Command: The specific command(s) prohibited to be run via Sudo.\n" +" RunAsUser: The user(s) or group(s) of users whose rights Sudo will be " +"invoked with.\n" +" RunAsGroup: The group(s) whose gid rights Sudo will be invoked with.\n" +" Options: The various Sudoers Options that can modify Sudo's behavior.\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:58 +msgid "" +"\n" +"An order can be added to a sudorule to control the order in which they\n" +"are evaluated (if the client supports it). This order is an integer and\n" +"must be unique.\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:62 +msgid "" +"\n" +"FreeIPA provides a designated binddn to use with Sudo located at:\n" +"uid=sudo,cn=sysaccounts,cn=etc,dc=example,dc=com\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:65 +msgid "" +"\n" +"To enable the binddn run the following command to set the password:\n" +"LDAPTLS_CACERT=/etc/ipa/ca.crt /usr/bin/ldappasswd -S -W -h ipa.example.com -" +"ZZ -D \"cn=Directory Manager\" uid=sudo,cn=sysaccounts,cn=etc,dc=example," +"dc=com\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:72 +msgid "" +"\n" +" Create a new rule:\n" +" ipa sudorule-add readfiles\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:75 +msgid "" +"\n" +" Add sudo command object and add it as allowed command in the rule:\n" +" ipa sudocmd-add /usr/bin/less\n" +" ipa sudorule-add-allow-command readfiles --sudocmds /usr/bin/less\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:79 +msgid "" +"\n" +" Add a host to the rule:\n" +" ipa sudorule-add-host readfiles --hosts server.example.com\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:82 +msgid "" +"\n" +" Add a user to the rule:\n" +" ipa sudorule-add-user readfiles --users jsmith\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:85 +msgid "" +"\n" +" Add a special Sudo rule for default Sudo server configuration:\n" +" ipa sudorule-add defaults\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:88 +msgid "" +"\n" +" Set a default Sudo option:\n" +" ipa sudorule-add-option defaults --sudooption '!authenticate'\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:91 +msgid "" +"\n" +" Set SELinux type and role transitions on a rule:\n" +" ipa sudorule-add-option sysadmin_sudo --sudooption type=unconfined_t\n" +" ipa sudorule-add-option sysadmin_sudo --sudooption role=unconfined_r\n" +msgstr "" + +#: ipaserver/plugins/sudorule.py:105 +msgid "this option has been deprecated." +msgstr "" + +#: ipaserver/plugins/sudorule.py:109 +msgid "host masks of allowed hosts" +msgstr "" + +#: ipaserver/plugins/sudorule.py:132 +msgid "sudo rule" +msgstr "" + +#: ipaserver/plugins/sudorule.py:133 +msgid "sudo rules" +msgstr "" + +#: ipaserver/plugins/sudorule.py:221 +msgid "Sudo Rules" +msgstr "" + +#: ipaserver/plugins/sudorule.py:222 +msgid "Sudo Rule" +msgstr "" + +#: ipaserver/plugins/sudorule.py:252 +msgid "Command category" +msgstr "" + +#: ipaserver/plugins/sudorule.py:253 +msgid "Command category the rule applies to" +msgstr "" + +#: ipaserver/plugins/sudorule.py:258 +msgid "RunAs User category" +msgstr "" + +#: ipaserver/plugins/sudorule.py:259 +msgid "RunAs User category the rule applies to" +msgstr "" + +#: ipaserver/plugins/sudorule.py:264 +msgid "RunAs Group category" +msgstr "" + +#: ipaserver/plugins/sudorule.py:265 +msgid "RunAs Group category the rule applies to" +msgstr "" + +#: ipaserver/plugins/sudorule.py:270 +msgid "Sudo order" +msgstr "" + +#: ipaserver/plugins/sudorule.py:271 +msgid "integer to order the Sudo rules" +msgstr "" + +#: ipaserver/plugins/sudorule.py:285 +msgid "External User" +msgstr "" + +#: ipaserver/plugins/sudorule.py:286 +msgid "External User the rule applies to (sudorule-find only)" +msgstr "" + +#: ipaserver/plugins/sudorule.py:298 +msgid "Host Masks" +msgstr "" + +#: ipaserver/plugins/sudorule.py:304 +msgid "Sudo Allow Commands" +msgstr "" + +#: ipaserver/plugins/sudorule.py:308 +msgid "Sudo Deny Commands" +msgstr "" + +#: ipaserver/plugins/sudorule.py:312 +msgid "Sudo Allow Command Groups" +msgstr "" + +#: ipaserver/plugins/sudorule.py:316 +msgid "Sudo Deny Command Groups" +msgstr "" + +#: ipaserver/plugins/sudorule.py:320 +msgid "RunAs Users" +msgstr "" + +#: ipaserver/plugins/sudorule.py:321 +msgid "Run as a user" +msgstr "" + +#: ipaserver/plugins/sudorule.py:325 +msgid "Groups of RunAs Users" +msgstr "" + +#: ipaserver/plugins/sudorule.py:326 +msgid "Run as any user within a specified group" +msgstr "" + +#: ipaserver/plugins/sudorule.py:331 +msgid "RunAs External User" +msgstr "" + +#: ipaserver/plugins/sudorule.py:332 +msgid "External User the commands can run as (sudorule-find only)" +msgstr "" + +#: ipaserver/plugins/sudorule.py:336 +msgid "External Groups of RunAs Users" +msgstr "" + +#: ipaserver/plugins/sudorule.py:337 +msgid "External Groups of users that the command can run as" +msgstr "" + +#: ipaserver/plugins/sudorule.py:341 +msgid "RunAs Groups" +msgstr "" + +#: ipaserver/plugins/sudorule.py:342 +msgid "Run with the gid of a specified POSIX group" +msgstr "" + +#: ipaserver/plugins/sudorule.py:347 +msgid "RunAs External Group" +msgstr "" + +#: ipaserver/plugins/sudorule.py:348 +msgid "External Group the commands can run as (sudorule-find only)" +msgstr "" + +#: ipaserver/plugins/sudorule.py:351 ipaserver/plugins/sudorule.py:920 +#: ipaserver/plugins/sudorule.py:968 +msgid "Sudo Option" +msgstr "" + +#: ipaserver/plugins/sudorule.py:357 #, python-format -msgid "%(value)s" +msgid "order must be a unique value (%(order)d already used by %(rule)s)" msgstr "" -#: ipaserver/plugins/topology.py:334 -msgid "Initialize left node" +#: ipaserver/plugins/sudorule.py:379 +msgid "Create new Sudo Rule." msgstr "" -#: ipaserver/plugins/topology.py:339 -msgid "Initialize right node" -msgstr "" - -#: ipaserver/plugins/topology.py:344 -msgid "Stop already started refresh of chosen node(s)" -msgstr "" - -#: ipaserver/plugins/topology.py:365 -msgid "left or right node has to be specified" -msgstr "" - -#: ipaserver/plugins/topology.py:370 -msgid "only one node can be specified" -msgstr "" - -#: ipaserver/plugins/topology.py:374 +#: ipaserver/plugins/sudorule.py:388 #, python-format -msgid "Replication refresh for segment: \"%(pkey)s\" requested." +msgid "Added Sudo Rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/topology.py:377 +#: ipaserver/plugins/sudorule.py:393 +msgid "Delete Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:395 #, python-format -msgid "Stopping of replication refresh for segment: \"%(pkey)s\" requested." +msgid "Deleted Sudo Rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/topology.py:398 -msgid "Display a segment." +#: ipaserver/plugins/sudorule.py:400 +msgid "Modify Sudo Rule." msgstr "" -#: ipaserver/plugins/topology.py:407 -msgid "suffix" -msgstr "" - -#: ipaserver/plugins/topology.py:408 -msgid "suffixes" -msgstr "" - -#: ipaserver/plugins/topology.py:412 -msgid "Topology suffixes" -msgstr "" - -#: ipaserver/plugins/topology.py:413 -msgid "Topology suffix" -msgstr "" - -#: ipaserver/plugins/topology.py:420 -msgid "Suffix name" -msgstr "" - -#: ipaserver/plugins/topology.py:425 -msgid "Managed LDAP suffix DN" -msgstr "" - -#: ipaserver/plugins/topology.py:432 -msgid "Search for topology suffixes." -msgstr "" - -#: ipaserver/plugins/topology.py:435 +#: ipaserver/plugins/sudorule.py:402 #, python-format -msgid "%(count)d topology suffix matched" -msgid_plural "%(count)d topology suffixes matched" +msgid "Modified Sudo Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/sudorule.py:422 +#, python-format +msgid "" +"%(type)s category cannot be set to 'all' while there are allowed %(objects)s" +msgstr "" + +#: ipaserver/plugins/sudorule.py:428 ipaserver/plugins/user.py:156 +#: ipaserver/plugins/cert.py:1024 ipaclient/remote_plugins/2_114/host.py:1176 +msgid "user" +msgstr "" + +#: ipaserver/plugins/sudorule.py:428 ipaserver/plugins/user.py:157 +msgid "users" +msgstr "" + +#: ipaserver/plugins/sudorule.py:433 ipaserver/plugins/host.py:275 +#: ipaserver/plugins/cert.py:1026 ipaclient/remote_plugins/2_114/host.py:1192 +msgid "host" +msgstr "" + +#: ipaserver/plugins/sudorule.py:433 ipaserver/plugins/idviews.py:453 +#: ipaserver/plugins/idviews.py:496 ipaserver/plugins/host.py:276 +msgid "hosts" +msgstr "" + +#: ipaserver/plugins/sudorule.py:438 +msgid "command" +msgstr "" + +#: ipaserver/plugins/sudorule.py:438 +msgid "commands" +msgstr "" + +#: ipaserver/plugins/sudorule.py:444 +msgid "runAs user" +msgstr "" + +#: ipaserver/plugins/sudorule.py:444 +msgid "runAs users" +msgstr "" + +#: ipaserver/plugins/sudorule.py:449 +msgid "group runAs" +msgstr "" + +#: ipaserver/plugins/sudorule.py:449 +msgid "runAs groups" +msgstr "" + +#: ipaserver/plugins/sudorule.py:467 +msgid "Search for Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:470 +#, python-format +msgid "%(count)d Sudo Rule matched" +msgid_plural "%(count)d Sudo Rules matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/topology.py:442 -msgid "Delete a topology suffix." +#: ipaserver/plugins/sudorule.py:476 +msgid "Display Sudo Rule." msgstr "" -#: ipaserver/plugins/topology.py:446 +#: ipaserver/plugins/sudorule.py:481 +msgid "Enable a Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:504 +msgid "Disable a Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:527 ipaserver/plugins/sudorule.py:558 +msgid "Add commands and sudo command groups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:542 +msgid "commands cannot be added when command category='all'" +msgstr "" + +#: ipaserver/plugins/sudorule.py:550 ipaserver/plugins/sudorule.py:570 +msgid "Remove commands and sudo command groups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:578 +msgid "Add users and groups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:610 +msgid "Remove users and groups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:628 +msgid "Add hosts and hostgroups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:686 +msgid "Remove hosts and hostgroups affected by Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:732 +msgid "Add users and groups for Sudo to execute as." +msgstr "" + +#: ipaserver/plugins/sudorule.py:755 ipaserver/plugins/sudorule.py:868 +msgid "users cannot be added when runAs user or runAs group category='all'" +msgstr "" + +#: ipaserver/plugins/sudorule.py:762 #, python-format -msgid "Deleted topology suffix \"%(value)s\"" +msgid "RunAsUser does not accept '%(name)s' as a user name" msgstr "" -#: ipaserver/plugins/topology.py:456 -msgid "Add a new topology suffix to be managed." -msgstr "" - -#: ipaserver/plugins/topology.py:460 +#: ipaserver/plugins/sudorule.py:770 #, python-format -msgid "Added topology suffix \"%(value)s\"" +msgid "RunAsUser does not accept '%(name)s' as a group name" msgstr "" -#: ipaserver/plugins/topology.py:470 -msgid "Modify a topology suffix." +#: ipaserver/plugins/sudorule.py:809 +msgid "Remove users and groups for Sudo to execute as." msgstr "" -#: ipaserver/plugins/topology.py:474 +#: ipaserver/plugins/sudorule.py:847 +msgid "Add group for Sudo to execute as." +msgstr "" + +#: ipaserver/plugins/sudorule.py:875 #, python-format -msgid "Modified topology suffix \"%(value)s\"" +msgid "RunAsGroup does not accept '%(name)s' as a group name" msgstr "" -#: ipaserver/plugins/topology.py:484 -msgid "Show managed suffix." +#: ipaserver/plugins/sudorule.py:895 +msgid "Remove group for Sudo to execute as." msgstr "" -#: ipaserver/plugins/topology.py:489 -msgid "" -"\n" -"Verify replication topology for suffix.\n" -"\n" -"Checks done:\n" -" 1. check if a topology is not disconnected. In other words if there are\n" -" replication paths between all servers.\n" -" 2. check if servers don't have more than the recommended number of\n" -" replication agreements\n" +#: ipaserver/plugins/sudorule.py:914 +msgid "Add an option to the Sudo Rule." +msgstr "" + +#: ipaserver/plugins/sudorule.py:962 +msgid "Remove an option from Sudo Rule." msgstr "" #: ipaserver/plugins/automount.py:41 @@ -2870,6 +3627,11 @@ msgstr "" msgid "Automount Location" msgstr "" +#: ipaserver/plugins/automount.py:252 ipaserver/plugins/host.py:472 +#: ipaserver/plugins/server.py:132 +msgid "Location" +msgstr "" + #: ipaserver/plugins/automount.py:253 msgid "Automount location name." msgstr "" @@ -3111,2210 +3873,4825 @@ msgstr[1] "" msgid "Display an automount key." msgstr "" -#: ipaserver/plugins/stageuser.py:65 +#: ipaserver/plugins/pwpolicy.py:43 msgid "" "\n" -"Stageusers\n" +"Password policy\n" "\n" -"Manage stage user entries.\n" +"A password policy sets limitations on IPA passwords, including maximum\n" +"lifetime, minimum lifetime, the number of passwords to save in\n" +"history, the number of character classes required (for stronger passwords)\n" +"and the minimum password length.\n" "\n" -"Stage user entries are directly under the container: \"cn=stage users,\n" -"cn=accounts, cn=provisioning, SUFFIX\".\n" -"Users can not authenticate with those entries (even if the entries\n" -"contain credentials). Those entries are only candidate to become Active " -"entries.\n" +"By default there is a single, global policy for all users. You can also\n" +"create a password policy to apply to a group. Each user is only subject\n" +"to one password policy, either the group policy or the global policy. A\n" +"group policy stands alone; it is not a super-set of the global policy plus\n" +"custom settings.\n" "\n" -"Active user entries are Posix users directly under the container: " -"\"cn=accounts, SUFFIX\".\n" -"Users can authenticate with Active entries, at the condition they have\n" -"credentials.\n" -"\n" -"Deleted user entries are Posix users directly under the container: " -"\"cn=deleted users,\n" -"cn=accounts, cn=provisioning, SUFFIX\".\n" -"Users can not authenticate with those entries, even if the entries contain " -"credentials.\n" -"\n" -"The stage user container contains entries:\n" -" - created by 'stageuser-add' commands that are Posix users,\n" -" - created by external provisioning system.\n" -"\n" -"A valid stage user entry MUST have:\n" -" - entry RDN is 'uid',\n" -" - ipaUniqueID is 'autogenerate'.\n" -"\n" -"IPA supports a wide range of username formats, but you need to be aware of " -"any\n" -"restrictions that may apply to your particular environment. For example,\n" -"usernames that start with a digit or usernames that exceed a certain length\n" -"may cause problems for some UNIX systems.\n" -"Use 'ipa config-mod' to change the username format allowed by IPA tools.\n" +"Each group password policy requires a unique priority setting. If a user\n" +"is in multiple groups that have password policies, this priority determines\n" +"which password policy is applied. A lower value indicates a higher priority\n" +"policy.\n" "\n" +"Group password policies are automatically removed when the groups they\n" +"are associated with are removed.\n" "\n" "EXAMPLES:\n" "\n" -" Add a new stageuser:\n" -" ipa stageuser-add --first=Tim --last=User --password tuser1\n" +" Modify the global policy:\n" +" ipa pwpolicy-mod --minlength=10\n" "\n" -" Add a stageuser from the deleted users container:\n" -" ipa stageuser-add --first=Tim --last=User --from-delete tuser1\n" +" Add a new group password policy:\n" +" ipa pwpolicy-add --maxlife=90 --minlife=1 --history=10 --minclasses=3 --" +"minlength=8 --priority=10 localadmins\n" "\n" +" Display the global password policy:\n" +" ipa pwpolicy-show\n" +"\n" +" Display a group password policy:\n" +" ipa pwpolicy-show localadmins\n" +"\n" +" Display the policy that would be applied to a given user:\n" +" ipa pwpolicy-show --user=tuser1\n" +"\n" +" Modify a group password policy:\n" +" ipa pwpolicy-mod --minclasses=2 localadmins\n" msgstr "" -#: ipaserver/plugins/stageuser.py:128 -msgid "Stage Users" +#: ipaserver/plugins/pwpolicy.py:92 +msgid "Class of Service object used for linking policies with groups" msgstr "" -#: ipaserver/plugins/stageuser.py:129 -msgid "Stage User" -msgstr "" - -#: ipaserver/plugins/stageuser.py:130 -msgid "stage user" -msgstr "" - -#: ipaserver/plugins/stageuser.py:131 -msgid "stage users" -msgstr "" - -#: ipaserver/plugins/stageuser.py:276 -msgid "Add a new stage user." -msgstr "" - -#: ipaserver/plugins/stageuser.py:278 +#: ipaserver/plugins/pwpolicy.py:143 #, python-format -msgid "Added stage user \"%(value)s\"" +msgid "priority must be a unique value (%(prio)d already used by %(gname)s)" msgstr "" -#: ipaserver/plugins/stageuser.py:286 -msgid "Create Stage user in from a delete user" +#: ipaserver/plugins/pwpolicy.py:171 +msgid "Add Class of Service entry" msgstr "" -#: ipaserver/plugins/stageuser.py:297 -msgid "givenname is required" +#: ipaserver/plugins/pwpolicy.py:194 +msgid "Delete Class of Service entry" msgstr "" -#: ipaserver/plugins/stageuser.py:300 -msgid "sn is required" +#: ipaserver/plugins/pwpolicy.py:200 +msgid "Modify Class of Service entry" msgstr "" -#: ipaserver/plugins/stageuser.py:416 -msgid "Delete a stage user." +#: ipaserver/plugins/pwpolicy.py:218 +msgid "Display Class of Service entry" msgstr "" -#: ipaserver/plugins/stageuser.py:418 -#, python-format -msgid "Deleted stage user \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:224 +msgid "Search for Class of Service entry" msgstr "" -#: ipaserver/plugins/stageuser.py:422 -msgid "Modify a stage user." +#: ipaserver/plugins/pwpolicy.py:237 +msgid "password policy" msgstr "" -#: ipaserver/plugins/stageuser.py:424 -#, python-format -msgid "Modified stage user \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:238 +msgid "password policies" msgstr "" -#: ipaserver/plugins/stageuser.py:444 -msgid "Search for stage users." +#: ipaserver/plugins/pwpolicy.py:291 +msgid "Password Policies" msgstr "" -#: ipaserver/plugins/stageuser.py:471 ipaserver/plugins/user.py:800 -#, python-format -msgid "%(count)d user matched" -msgid_plural "%(count)d users matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/stageuser.py:476 -msgid "Display information about a stage user." +#: ipaserver/plugins/pwpolicy.py:292 ipaserver/plugins/internal.py:1227 +msgid "Password Policy" msgstr "" -#: ipaserver/plugins/stageuser.py:493 -msgid "Activate a stage user." +#: ipaserver/plugins/pwpolicy.py:297 ipaserver/plugins/internal.py:1627 +msgid "Group" msgstr "" -#: ipaserver/plugins/stageuser.py:495 -#, python-format -msgid "Activate a stage user \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:298 +msgid "Manage password policy for specific group" msgstr "" -#: ipaserver/plugins/stageuser.py:508 -msgid "Entry RDN is not 'uid'" +#: ipaserver/plugins/pwpolicy.py:303 +msgid "Max lifetime (days)" msgstr "" -#: ipaserver/plugins/stageuser.py:514 -#, python-format -msgid "Entry has no '%(attribute)s'" +#: ipaserver/plugins/pwpolicy.py:304 +msgid "Maximum password lifetime (in days)" msgstr "" -#: ipaserver/plugins/stageuser.py:690 -#, python-format -msgid "active user with name \"%(user)s\" already exists" +#: ipaserver/plugins/pwpolicy.py:310 +msgid "Min lifetime (hours)" msgstr "" -#: ipaserver/plugins/stageuser.py:754 -#, python-format -msgid "Stage user %s activated" +#: ipaserver/plugins/pwpolicy.py:311 +msgid "Minimum password lifetime (in hours)" msgstr "" -#: ipaserver/plugins/stageuser.py:761 -msgid "Add a manager to the stage user entry" +#: ipaserver/plugins/pwpolicy.py:316 +msgid "History size" msgstr "" -#: ipaserver/plugins/stageuser.py:766 -msgid "Remove a manager to the stage user entry" +#: ipaserver/plugins/pwpolicy.py:317 +msgid "Password history size" msgstr "" -#: ipaserver/plugins/stageuser.py:771 -msgid "Add one or more certificates to the stageuser entry" +#: ipaserver/plugins/pwpolicy.py:322 +msgid "Character classes" msgstr "" -#: ipaserver/plugins/stageuser.py:772 -#, python-format -msgid "Added certificates to stageuser \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:323 +msgid "Minimum number of character classes" msgstr "" -#: ipaserver/plugins/stageuser.py:777 -msgid "Remove one or more certificates to the stageuser entry" +#: ipaserver/plugins/pwpolicy.py:329 +msgid "Min length" msgstr "" -#: ipaserver/plugins/stageuser.py:778 -#, python-format -msgid "Removed certificates from stageuser \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:330 +msgid "Minimum length of password" msgstr "" -#: ipaserver/plugins/stageuser.py:783 -msgid "Add new principal alias to the stageuser entry" +#: ipaserver/plugins/pwpolicy.py:335 ipaserver/plugins/certmap.py:304 +msgid "Priority" msgstr "" -#: ipaserver/plugins/stageuser.py:784 -#, python-format -msgid "Added new aliases to stageuser \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:336 +msgid "Priority of the policy (higher number means lower priority" msgstr "" -#: ipaserver/plugins/stageuser.py:789 -msgid "Remove principal alias from the stageuser entry" +#: ipaserver/plugins/pwpolicy.py:343 +msgid "Max failures" msgstr "" -#: ipaserver/plugins/stageuser.py:790 -#, python-format -msgid "Removed aliases from stageuser \"%(value)s\"" +#: ipaserver/plugins/pwpolicy.py:344 +msgid "Consecutive failures before lockout" msgstr "" -#: ipaserver/plugins/stageuser.py:795 -msgid "Add one or more certificate mappings to the stage user entry." +#: ipaserver/plugins/pwpolicy.py:350 +msgid "Failure reset interval" msgstr "" -#: ipaserver/plugins/stageuser.py:801 -msgid "Remove one or more certificate mappings from the stage user entry." +#: ipaserver/plugins/pwpolicy.py:351 +msgid "Period after which failure count will be reset (seconds)" msgstr "" -#: ipaserver/plugins/user.py:78 ipaclient/remote_plugins/2_114/user.py:19 -msgid "" -"\n" -"Users\n" -"\n" -"Manage user entries. All users are POSIX users.\n" -"\n" -"IPA supports a wide range of username formats, but you need to be aware of " -"any\n" -"restrictions that may apply to your particular environment. For example,\n" -"usernames that start with a digit or usernames that exceed a certain length\n" -"may cause problems for some UNIX systems.\n" -"Use 'ipa config-mod' to change the username format allowed by IPA tools.\n" -"\n" -"Disabling a user account prevents that user from obtaining new Kerberos\n" -"credentials. It does not invalidate any credentials that have already\n" -"been issued.\n" -"\n" -"Password management is not a part of this module. For more information\n" -"about this topic please see: ipa help passwd\n" -"\n" -"Account lockout on password failure happens per IPA master. The user-status\n" -"command can be used to identify which master the user is locked out on.\n" -"It is on that master the administrator must unlock the user.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new user:\n" -" ipa user-add --first=Tim --last=User --password tuser1\n" -"\n" -" Find all users whose entries include the string \"Tim\":\n" -" ipa user-find Tim\n" -"\n" -" Find all users with \"Tim\" as the first name:\n" -" ipa user-find --first=Tim\n" -"\n" -" Disable a user account:\n" -" ipa user-disable tuser1\n" -"\n" -" Enable a user account:\n" -" ipa user-enable tuser1\n" -"\n" -" Delete a user:\n" -" ipa user-del tuser1\n" +#: ipaserver/plugins/pwpolicy.py:357 +msgid "Lockout duration" msgstr "" -#: ipaserver/plugins/user.py:144 ipaserver/plugins/group.py:193 -#: ipaserver/plugins/group.py:395 ipaserver/plugins/group.py:650 -msgid "group" +#: ipaserver/plugins/pwpolicy.py:358 +msgid "Period for which lockout is enforced (seconds)" msgstr "" -#: ipaserver/plugins/user.py:154 ipaserver/plugins/baseuser.py:196 -#: ipaserver/plugins/selinuxusermap.py:272 ipaserver/plugins/hbacrule.py:260 -#: ipaserver/plugins/internal.py:1179 ipaserver/plugins/automember.py:697 -#: ipaserver/plugins/sudorule.py:276 ipaserver/plugins/caacl.py:220 -msgid "Users" +#: ipaserver/plugins/pwpolicy.py:411 +msgid "Maximum password life must be greater than minimum." msgstr "" +#: ipaserver/plugins/pwpolicy.py:429 +msgid "Add a new group password policy." +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:455 +msgid "Delete a group password policy." +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:467 +msgid "cannot delete global password policy" +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:482 +msgid "Modify a group password policy." +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:496 +msgid "priority cannot be set on global policy" +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:528 +msgid "Display information about password policy." +msgstr "" + +#: ipaserver/plugins/pwpolicy.py:532 ipaserver/plugins/internal.py:1181 +#: ipaserver/plugins/internal.py:1292 ipaserver/plugins/internal.py:1661 #: ipaserver/plugins/user.py:155 ipaserver/plugins/baseuser.py:197 -#: ipaserver/plugins/pwpolicy.py:532 ipaserver/plugins/internal.py:1177 -#: ipaserver/plugins/internal.py:1288 ipaserver/plugins/internal.py:1657 msgid "User" msgstr "" -#: ipaserver/plugins/user.py:156 ipaserver/plugins/cert.py:1009 -#: ipaserver/plugins/sudorule.py:428 -msgid "user" +#: ipaserver/plugins/pwpolicy.py:533 +msgid "Display effective policy for a specific user" msgstr "" -#: ipaserver/plugins/user.py:157 ipaserver/plugins/sudorule.py:428 -msgid "users" +#: ipaserver/plugins/pwpolicy.py:560 +msgid "Search for group password policies." msgstr "" -#: ipaserver/plugins/user.py:389 ipaclient/remote_plugins/2_114/user.py:223 -msgid "Account disabled" +#: ipaserver/plugins/serverroles.py:84 +#, python-brace-format +msgid "{role}: role not found" msgstr "" -#: ipaserver/plugins/user.py:392 ipaserver/plugins/user.py:1089 -msgid "Preserved user" +#: ipaserver/plugins/serverroles.py:178 +#, python-brace-format +msgid "{attr}: no such attribute" msgstr "" -#: ipaserver/plugins/user.py:448 ipaclient/remote_plugins/2_114/user.py:339 -msgid "Add a new user." -msgstr "" - -#: ipaserver/plugins/user.py:450 -#, python-format -msgid "Added user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:457 ipaclient/remote_plugins/2_114/user.py:601 -msgid "Don't create user private group" -msgstr "" - -#: ipaserver/plugins/user.py:546 ipaserver/plugins/migration.py:800 -msgid "Default group for new users not found" -msgstr "" - -#: ipaserver/plugins/user.py:549 -msgid "Default group for new users is not POSIX" -msgstr "" - -#: ipaserver/plugins/user.py:636 ipaclient/remote_plugins/2_114/user.py:645 -msgid "Delete a user." -msgstr "" - -#: ipaserver/plugins/user.py:638 -#, python-format -msgid "Deleted user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:656 -#, python-format -msgid "%s: user is already preserved" -msgstr "" - -#: ipaserver/plugins/user.py:765 ipaclient/remote_plugins/2_114/user.py:1138 -msgid "Modify a user." -msgstr "" - -#: ipaserver/plugins/user.py:767 -#, python-format -msgid "Modified user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:794 ipaclient/remote_plugins/2_114/user.py:750 -msgid "Search for users." -msgstr "" - -#: ipaserver/plugins/user.py:805 ipaclient/remote_plugins/2_114/user.py:999 -msgid "Self" -msgstr "" - -#: ipaserver/plugins/user.py:806 ipaclient/remote_plugins/2_114/user.py:1000 -msgid "Display user record for current Kerberos principal" -msgstr "" - -#: ipaserver/plugins/user.py:852 ipaclient/remote_plugins/2_114/user.py:1450 -msgid "Display information about a user." -msgstr "" - -#: ipaserver/plugins/user.py:875 ipaclient/remote_plugins/2_156/user.py:1801 -msgid "Undelete a delete user account." -msgstr "" - -#: ipaserver/plugins/user.py:878 -#, python-format -msgid "Undeleted user account \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:892 -#, python-format -msgid "user \"%s\" is already active" -msgstr "" - -#: ipaserver/plugins/user.py:920 ipaclient/remote_plugins/2_156/user.py:1683 -msgid "Move deleted user into staged area" -msgstr "" - -#: ipaserver/plugins/user.py:923 -#, python-format -msgid "Staged user account \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1014 ipaclient/remote_plugins/2_114/user.py:684 -msgid "Disable a user account." -msgstr "" - -#: ipaserver/plugins/user.py:1017 -#, python-format -msgid "Disabled user account \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1035 ipaclient/remote_plugins/2_114/user.py:717 -msgid "Enable a user account." -msgstr "" - -#: ipaserver/plugins/user.py:1039 -#, python-format -msgid "Enabled user account \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1056 +#: ipaserver/plugins/domainlevel.py:18 msgid "" "\n" -" Unlock a user account\n" -"\n" -" An account may become locked if the password is entered incorrectly too\n" -" many times within a specific time period as controlled by password\n" -" policy. A locked account is a temporary condition and may be unlocked " -"by\n" -" an administrator." +"Raise the IPA Domain Level.\n" msgstr "" -#: ipaserver/plugins/user.py:1065 -#, python-format -msgid "Unlocked account \"%(value)s\"" +#: ipaserver/plugins/domainlevel.py:27 +msgid "Current domain level:" msgstr "" -#: ipaserver/plugins/user.py:1097 -msgid "Failed logins" +#: ipaserver/plugins/domainlevel.py:69 +#, python-brace-format +msgid "" +"Domain Level cannot be raised to {0}, existing replication conflicts have to " +"be resolved." msgstr "" -#: ipaserver/plugins/user.py:1101 -msgid "Last successful authentication" +#: ipaserver/plugins/domainlevel.py:93 +msgid "Query current Domain Level." msgstr "" -#: ipaserver/plugins/user.py:1105 -msgid "Last failed authentication" +#: ipaserver/plugins/domainlevel.py:112 +msgid "Server does not support domain level functionality" msgstr "" -#: ipaserver/plugins/user.py:1109 -msgid "Time now" +#: ipaserver/plugins/domainlevel.py:117 +msgid "Change current Domain Level." msgstr "" -#: ipaserver/plugins/user.py:1117 +#: ipaserver/plugins/domainlevel.py:124 ipaserver/plugins/internal.py:791 +#: ipaserver/plugins/internal.py:792 +msgid "Domain Level" +msgstr "" + +#: ipaserver/plugins/domainlevel.py:147 +msgid "Domain Level cannot be lowered." +msgstr "" + +#: ipaserver/plugins/domainlevel.py:155 +#, python-brace-format +msgid "Domain Level cannot be raised to {0}, server {1} does not support it." +msgstr "" + +#: ipaserver/plugins/otptoken.py:42 msgid "" "\n" -" Lockout status of a user account\n" -"\n" -" An account may become locked if the password is entered incorrectly too\n" -" many times within a specific time period as controlled by password\n" -" policy. A locked account is a temporary condition and may be unlocked " -"by\n" -" an administrator.\n" -"\n" -" This connects to each IPA master and displays the lockout status on\n" -" each one.\n" -"\n" -" To determine whether an account is locked on a given server you need\n" -" to compare the number of failed logins and the time of the last " -"failure.\n" -" For an account to be locked it must exceed the maxfail failures within\n" -" the failinterval duration as specified in the password policy " -"associated\n" -" with the user.\n" -"\n" -" The failed login counter is modified only when a user attempts a log in\n" -" so it is possible that an account may appear locked but the last failed\n" -" login attempt is older than the lockouttime of the password policy. " -"This\n" -" means that the user may attempt a login again. " +"OTP Tokens\n" msgstr "" -#: ipaserver/plugins/user.py:1171 -#, python-format -msgid "%(host)s failed: %(error)s" -msgstr "" - -#: ipaserver/plugins/user.py:1209 -#, python-format -msgid "%(host)s failed" -msgstr "" - -#: ipaserver/plugins/user.py:1219 -#, python-format -msgid "Account disabled: %(disabled)s" -msgstr "" - -#: ipaserver/plugins/user.py:1226 ipaclient/remote_plugins/2_156/user.py:665 -msgid "Add one or more certificates to the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1227 -#, python-format -msgid "Added certificates to user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1232 ipaclient/remote_plugins/2_156/user.py:1558 -msgid "Remove one or more certificates to the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1233 -#, python-format -msgid "Removed certificates from user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1238 ipaserver/plugins/baseuser.py:945 -msgid "Add one or more certificate mappings to the user entry." -msgstr "" - -#: ipaserver/plugins/user.py:1243 ipaserver/plugins/baseuser.py:964 -msgid "Remove one or more certificate mappings from the user entry." -msgstr "" - -#: ipaserver/plugins/user.py:1248 ipaclient/remote_plugins/2_164/user.py:726 -msgid "Add a manager to the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1253 ipaclient/remote_plugins/2_164/user.py:1681 -msgid "Remove a manager to the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1258 -msgid "Add new principal alias to the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1259 -#, python-format -msgid "Added new aliases to user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/user.py:1264 -msgid "Remove principal alias from the user entry" -msgstr "" - -#: ipaserver/plugins/user.py:1265 -#, python-format -msgid "Removed aliases from user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idrange.py:43 -msgid "" -"=======\n" -"WARNING:\n" -"\n" -"DNA plugin in 389-ds will allocate IDs based on the ranges configured for " -"the\n" -"local domain. Currently the DNA plugin *cannot* be reconfigured itself " -"based\n" -"on the local ranges set via this family of commands.\n" -"\n" -"Manual configuration change has to be done in the DNA plugin configuration " -"for\n" -"the new local range. Specifically, The dnaNextRange attribute of 'cn=Posix\n" -"IDs,cn=Distributed Numeric Assignment Plugin,cn=plugins,cn=config' has to " -"be\n" -"modified to match the new range.\n" -"=======\n" -msgstr "" - -#: ipaserver/plugins/idrange.py:57 +#: ipaserver/plugins/otptoken.py:44 msgid "" "\n" -"ID ranges\n" -"\n" -"Manage ID ranges used to map Posix IDs to SIDs and back.\n" -"\n" -"There are two type of ID ranges which are both handled by this utility:\n" -"\n" -" - the ID ranges of the local domain\n" -" - the ID ranges of trusted remote domains\n" -"\n" -"Both types have the following attributes in common:\n" -"\n" -" - base-id: the first ID of the Posix ID range\n" -" - range-size: the size of the range\n" -"\n" -"With those two attributes a range object can reserve the Posix IDs starting\n" -"with base-id up to but not including base-id+range-size exclusively.\n" -"\n" -"Additionally an ID range of the local domain may set\n" -" - rid-base: the first RID(*) of the corresponding RID range\n" -" - secondary-rid-base: first RID of the secondary RID range\n" -"\n" -"and an ID range of a trusted domain must set\n" -" - rid-base: the first RID of the corresponding RID range\n" -" - sid: domain SID of the trusted domain\n" -"\n" -"\n" -"\n" -"EXAMPLE: Add a new ID range for a trusted domain\n" -"\n" -"Since there might be more than one trusted domain the domain SID must be " -"given\n" -"while creating the ID range.\n" -"\n" -" ipa idrange-add --base-id=1200000 --range-size=200000 --rid-base=0 \\\n" -" --dom-sid=S-1-5-21-123-456-789 trusted_dom_range\n" -"\n" -"This ID range is then used by the IPA server and the SSSD IPA provider to\n" -"assign Posix UIDs to users from the trusted domain.\n" -"\n" -"If e.g. a range for a trusted domain is configured with the following " -"values:\n" -" base-id = 1200000\n" -" range-size = 200000\n" -" rid-base = 0\n" -"the RIDs 0 to 199999 are mapped to the Posix ID from 1200000 to 13999999. " -"So\n" -"RID 1000 <-> Posix ID 1201000\n" -"\n" -"\n" -"\n" -"EXAMPLE: Add a new ID range for the local domain\n" -"\n" -"To create an ID range for the local domain it is not necessary to specify a\n" -"domain SID. But since it is possible that a user and a group can have the " -"same\n" -"value as Posix ID a second RID interval is needed to handle conflicts.\n" -"\n" -" ipa idrange-add --base-id=1200000 --range-size=200000 --rid-base=1000 \\\n" -" --secondary-rid-base=1000000 local_range\n" -"\n" -"The data from the ID ranges of the local domain are used by the IPA server\n" -"internally to assign SIDs to IPA users and groups. The SID will then be " -"stored\n" -"in the user or group objects.\n" -"\n" -"If e.g. the ID range for the local domain is configured with the values " -"from\n" -"the example above then a new user with the UID 1200007 will get the RID " -"1007.\n" -"If this RID is already used by a group the RID will be 1000007. This can " -"only\n" -"happen if a user or a group object was created with a fixed ID because the\n" -"automatic assignment will not assign the same ID twice. Since there are " -"only\n" -"users and groups sharing the same ID namespace it is sufficient to have " -"only\n" -"one fallback range to handle conflicts.\n" -"\n" -"To find the Posix ID for a given RID from the local domain it has to be\n" -"checked first if the RID falls in the primary or secondary RID range and\n" -"the rid-base or the secondary-rid-base has to be subtracted, respectively,\n" -"and the base-id has to be added to get the Posix ID.\n" -"\n" -"Typically the creation of ID ranges happens behind the scenes and this CLI\n" -"must not be used at all. The ID range for the local domain will be created\n" -"during installation or upgrade from an older version. The ID range for a\n" -"trusted domain will be created together with the trust by 'ipa trust-" -"add ...'.\n" -"\n" -"USE CASES:\n" -"\n" -" Add an ID range from a transitively trusted domain\n" -"\n" -" If the trusted domain (A) trusts another domain (B) as well and this " -"trust\n" -" is transitive 'ipa trust-add domain-A' will only create a range for\n" -" domain A. The ID range for domain B must be added manually.\n" -"\n" -" Add an additional ID range for the local domain\n" -"\n" -" If the ID range of the local domain is exhausted, i.e. no new IDs can " -"be\n" -" assigned to Posix users or groups by the DNA plugin, a new range has to " -"be\n" -" created to allow new users and groups to be added. (Currently there is " -"no\n" -" connection between this range CLI and the DNA plugin, but a future " -"version\n" -" might be able to modify the configuration of the DNS plugin as well)\n" -"\n" -"In general it is not necessary to modify or delete ID ranges. If there is " -"no\n" -"other way to achieve a certain configuration than to modify or delete an ID\n" -"range it should be done with great care. Because UIDs are stored in the " -"file\n" -"system and are used for access control it might be possible that users are\n" -"allowed to access files of other users if an ID range got deleted and " -"reused\n" -"for a different domain.\n" -"\n" -"(*) The RID is typically the last integer of a user or group SID which " -"follows\n" -"the domain SID. E.g. if the domain SID is S-1-5-21-123-456-789 and a user " -"from\n" -"this domain has the SID S-1-5-21-123-456-789-1010 then 1010 is the RID of " -"the\n" -"user. RIDs are unique in a domain, 32bit values and are used for users and\n" -"groups.\n" -"\n" +"Manage OTP tokens.\n" msgstr "" -#: ipaserver/plugins/idrange.py:198 -msgid "ID Ranges" -msgstr "" - -#: ipaserver/plugins/idrange.py:199 -msgid "ID Range" -msgstr "" - -#: ipaserver/plugins/idrange.py:203 -msgid "local domain range" -msgstr "" - -#: ipaserver/plugins/idrange.py:205 ipaserver/plugins/trust.py:674 -msgid "Active Directory domain range" -msgstr "" - -#: ipaserver/plugins/idrange.py:206 ipaserver/plugins/trust.py:675 -msgid "Active Directory trust range with POSIX attributes" -msgstr "" - -#: ipaserver/plugins/idrange.py:214 -msgid "Range name" -msgstr "" - -#: ipaserver/plugins/idrange.py:219 -msgid "First Posix ID of the range" -msgstr "" - -#: ipaserver/plugins/idrange.py:223 -msgid "Number of IDs in the range" -msgstr "" - -#: ipaserver/plugins/idrange.py:227 -msgid "First RID of the corresponding RID range" -msgstr "" - -#: ipaserver/plugins/idrange.py:231 -msgid "First RID of the secondary RID range" -msgstr "" - -#: ipaserver/plugins/idrange.py:236 ipaserver/plugins/idrange.py:626 -msgid "Domain SID of the trusted domain" -msgstr "" - -#: ipaserver/plugins/idrange.py:241 ipaserver/plugins/idrange.py:634 -msgid "Name of the trusted domain" -msgstr "" - -#: ipaserver/plugins/idrange.py:244 ipaserver/plugins/internal.py:1235 -#: ipaserver/plugins/trust.py:710 ipaclient/remote_plugins/2_114/trust.py:316 -msgid "Range type" -msgstr "" - -#: ipaserver/plugins/idrange.py:246 -msgid "ID range type, one of allowed values" -msgstr "" - -#: ipaserver/plugins/idrange.py:321 -msgid "" -"range modification leaving objects with ID out of the defined range is not " -"allowed" -msgstr "" - -#: ipaserver/plugins/idrange.py:326 -msgid "" -"Cannot perform SID validation without Samba 4 support installed. Make sure " -"you have installed server-trust-ad sub-package of IPA on the server" -msgstr "" - -#: ipaserver/plugins/idrange.py:333 -msgid "" -"Cross-realm trusts are not configured. Make sure you have run ipa-adtrust-" -"install on the IPA server first" -msgstr "" - -#: ipaserver/plugins/idrange.py:345 -msgid "SID is not recognized as a valid SID for a trusted domain" -msgstr "" - -#: ipaserver/plugins/idrange.py:382 +#: ipaserver/plugins/otptoken.py:46 msgid "" "\n" -" Add new ID range.\n" -"\n" -" To add a new ID range you always have to specify\n" -"\n" -" --base-id\n" -" --range-size\n" -"\n" -" Additionally\n" -"\n" -" --rid-base\n" -" --secondary-rid-base\n" -"\n" -" may be given for a new ID range for the local domain while\n" -"\n" -" --rid-base\n" -" --dom-sid\n" -"\n" -" must be given to add a new range for a trusted AD domain.\n" -"\n" +"IPA supports the use of OTP tokens for multi-factor authentication. This\n" +"code enables the management of OTP tokens.\n" msgstr "" -#: ipaserver/plugins/idrange.py:404 +#: ipaserver/plugins/otptoken.py:51 +msgid "" +"\n" +" Add a new token:\n" +" ipa otptoken-add --type=totp --owner=jdoe --desc=\"My soft token\"\n" +msgstr "" + +#: ipaserver/plugins/otptoken.py:54 +msgid "" +"\n" +" Examine the token:\n" +" ipa otptoken-show a93db710-a31a-4639-8647-f15b2c70b78a\n" +msgstr "" + +#: ipaserver/plugins/otptoken.py:57 +msgid "" +"\n" +" Change the vendor:\n" +" ipa otptoken-mod a93db710-a31a-4639-8647-f15b2c70b78a --vendor=\"Red Hat" +"\"\n" +msgstr "" + +#: ipaserver/plugins/otptoken.py:60 +msgid "" +"\n" +" Delete a token:\n" +" ipa otptoken-del a93db710-a31a-4639-8647-f15b2c70b78a\n" +msgstr "" + +#: ipaserver/plugins/otptoken.py:137 +msgid "OTP token" +msgstr "" + +#: ipaserver/plugins/otptoken.py:138 +msgid "OTP tokens" +msgstr "" + +#: ipaserver/plugins/otptoken.py:154 +msgid "OTP Tokens" +msgstr "" + +#: ipaserver/plugins/otptoken.py:155 +msgid "OTP Token" +msgstr "" + +#: ipaserver/plugins/otptoken.py:160 +msgid "Unique ID" +msgstr "" + +#: ipaserver/plugins/otptoken.py:166 +msgid "Type of the token" +msgstr "" + +#: ipaserver/plugins/otptoken.py:175 +msgid "Token description (informational only)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:179 +msgid "Owner" +msgstr "" + +#: ipaserver/plugins/otptoken.py:180 +msgid "Assigned user of the token (default: self)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:183 ipaserver/plugins/baseuser.py:341 +msgid "Manager" +msgstr "" + +#: ipaserver/plugins/otptoken.py:184 +msgid "Assigned manager of the token (default: self)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:189 ipaserver/plugins/internal.py:1899 +msgid "Disabled" +msgstr "" + +#: ipaserver/plugins/otptoken.py:190 +msgid "Mark the token as disabled (default: false)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:194 +msgid "Validity start" +msgstr "" + +#: ipaserver/plugins/otptoken.py:195 +msgid "First date/time the token can be used" +msgstr "" + +#: ipaserver/plugins/otptoken.py:199 +msgid "Validity end" +msgstr "" + +#: ipaserver/plugins/otptoken.py:200 +msgid "Last date/time the token can be used" +msgstr "" + +#: ipaserver/plugins/otptoken.py:204 +msgid "Vendor" +msgstr "" + +#: ipaserver/plugins/otptoken.py:205 +msgid "Token vendor name (informational only)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:209 +msgid "Model" +msgstr "" + +#: ipaserver/plugins/otptoken.py:210 +msgid "Token model (informational only)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:214 +msgid "Serial" +msgstr "" + +#: ipaserver/plugins/otptoken.py:215 +msgid "Token serial (informational only)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:220 +msgid "Token secret (Base32; default: random)" +msgstr "" + +#: ipaserver/plugins/otptoken.py:229 ipaserver/plugins/dns.py:1007 +#: ipaserver/plugins/dns.py:1050 ipaserver/plugins/dns.py:1399 +msgid "Algorithm" +msgstr "" + +#: ipaserver/plugins/otptoken.py:230 +msgid "Token hash algorithm" +msgstr "" + +#: ipaserver/plugins/otptoken.py:238 +msgid "Digits" +msgstr "" + +#: ipaserver/plugins/otptoken.py:239 +msgid "Number of digits each token code will have" +msgstr "" + +#: ipaserver/plugins/otptoken.py:247 +msgid "Clock offset" +msgstr "" + +#: ipaserver/plugins/otptoken.py:248 +msgid "TOTP token / FreeIPA server time difference" +msgstr "" + +#: ipaserver/plugins/otptoken.py:255 +msgid "Clock interval" +msgstr "" + +#: ipaserver/plugins/otptoken.py:256 +msgid "Length of TOTP token code validity" +msgstr "" + +#: ipaserver/plugins/otptoken.py:264 +msgid "Counter" +msgstr "" + +#: ipaserver/plugins/otptoken.py:265 +msgid "Initial counter for the HOTP token" +msgstr "" + +#: ipaserver/plugins/otptoken.py:272 +msgid "URI" +msgstr "" + +#: ipaserver/plugins/otptoken.py:280 +msgid "Add a new OTP token." +msgstr "" + +#: ipaserver/plugins/otptoken.py:281 #, python-format -msgid "Added ID range \"%(value)s\"" +msgid "Added OTP token \"%(value)s\"" msgstr "" -#: ipaserver/plugins/idrange.py:416 ipaserver/plugins/idrange.py:666 -msgid "Options dom-sid and dom-name cannot be used together" +#: ipaserver/plugins/otptoken.py:284 +msgid "(deprecated)" msgstr "" -#: ipaserver/plugins/idrange.py:427 -msgid "Specified trusted domain name could not be found." +#: ipaserver/plugins/otptoken.py:285 +msgid "Do not display QR code" msgstr "" -#: ipaserver/plugins/idrange.py:442 -msgid "Options dom-sid/dom-name and rid-base must be used together" +#: ipaserver/plugins/otptoken.py:335 +msgid "cannot be empty" msgstr "" -#: ipaserver/plugins/idrange.py:449 ipaserver/plugins/idrange.py:701 -msgid "" -"Option rid-base must not be used when IPA range type is ipa-ad-trust-posix" +#: ipaserver/plugins/otptoken.py:366 +msgid "Delete an OTP token." msgstr "" -#: ipaserver/plugins/idrange.py:456 -msgid "" -"IPA Range type must be one of ipa-ad-trust or ipa-ad-trust-posix when SID of " -"the trusted domain is specified" -msgstr "" - -#: ipaserver/plugins/idrange.py:462 -msgid "Options dom-sid/dom-name and secondary-rid-base cannot be used together" -msgstr "" - -#: ipaserver/plugins/idrange.py:481 -msgid "" -"IPA Range type must not be one of ipa-ad-trust or ipa-ad-trust-posix when " -"SID of the trusted domain is not specified." -msgstr "" - -#: ipaserver/plugins/idrange.py:488 ipaserver/plugins/idrange.py:720 -msgid "Options secondary-rid-base and rid-base must be used together" -msgstr "" - -#: ipaserver/plugins/idrange.py:498 ipaserver/plugins/idrange.py:743 -msgid "Primary RID range and secondary RID range cannot overlap" -msgstr "" - -#: ipaserver/plugins/idrange.py:510 -msgid "" -"You must specify both rid-base and secondary-rid-base options, because ipa-" -"adtrust-install has already been run." -msgstr "" - -#: ipaserver/plugins/idrange.py:527 -msgid "Delete an ID range." -msgstr "" - -#: ipaserver/plugins/idrange.py:529 +#: ipaserver/plugins/otptoken.py:367 #, python-format -msgid "Deleted ID range \"%(value)s\"" +msgid "Deleted OTP token \"%(value)s\"" msgstr "" -#: ipaserver/plugins/idrange.py:575 -msgid "Search for ranges." +#: ipaserver/plugins/otptoken.py:372 +msgid "Modify a OTP token." msgstr "" -#: ipaserver/plugins/idrange.py:578 +#: ipaserver/plugins/otptoken.py:373 #, python-format -msgid "%(count)d range matched" -msgid_plural "%(count)d ranges matched" +msgid "Modified OTP token \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/otptoken.py:421 +msgid "Search for OTP token." +msgstr "" + +#: ipaserver/plugins/otptoken.py:422 +#, python-format +msgid "%(count)d OTP token matched" +msgid_plural "%(count)d OTP tokens matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/idrange.py:598 -msgid "Display information about a range." +#: ipaserver/plugins/otptoken.py:450 +msgid "Display information about an OTP token." msgstr "" -#: ipaserver/plugins/idrange.py:614 -msgid "" -"Modify ID range.\n" -"\n" +#: ipaserver/plugins/otptoken.py:463 +msgid "Add users that can manage this token." msgstr "" -#: ipaserver/plugins/idrange.py:618 -#, python-format -msgid "Modified ID range \"%(value)s\"" +#: ipaserver/plugins/otptoken.py:469 +msgid "Remove users that can manage this token." msgstr "" -#: ipaserver/plugins/idrange.py:650 -msgid "" -"This command can not be used to change ID allocation for local IPA domain. " -"Run `ipa help idrange` for more information" -msgstr "" - -#: ipaserver/plugins/idrange.py:678 -msgid "" -"SID for the specified trusted domain name could not be found. Please specify " -"the SID directly using dom-sid option." -msgstr "" - -#: ipaserver/plugins/idrange.py:685 -msgid "Options dom-sid and secondary-rid-base cannot be used together" -msgstr "" - -#: ipaserver/plugins/idrange.py:692 -msgid "Options dom-sid and rid-base must be used together" -msgstr "" - -#: ipaserver/plugins/aci.py:36 ipaclient/remote_plugins/2_114/aci.py:19 +#: ipaserver/plugins/internal.py:30 msgid "" "\n" -"Directory Server Access Control Instructions (ACIs)\n" -"\n" -"ACIs are used to allow or deny access to information. This module is\n" -"currently designed to allow, not deny, access.\n" -"\n" -"The aci commands are designed to grant permissions that allow updating\n" -"existing entries or adding or deleting new ones. The goal of the ACIs\n" -"that ship with IPA is to provide a set of low-level permissions that\n" -"grant access to special groups called taskgroups. These low-level\n" -"permissions can be combined into roles that grant broader access. These\n" -"roles are another type of group, roles.\n" -"\n" -"For example, if you have taskgroups that allow adding and modifying users " -"you\n" -"could create a role, useradmin. You would assign users to the useradmin\n" -"role to allow them to do the operations defined by the taskgroups.\n" -"\n" -"You can create ACIs that delegate permission so users in group A can write\n" -"attributes on group B.\n" -"\n" -"The type option is a map that applies to all entries in the users, groups " -"or\n" -"host location. It is primarily designed to be used when granting add\n" -"permissions (to write new entries).\n" -"\n" -"An ACI consists of three parts:\n" -"1. target\n" -"2. permissions\n" -"3. bind rules\n" -"\n" -"The target is a set of rules that define which LDAP objects are being\n" -"targeted. This can include a list of attributes, an area of that LDAP\n" -"tree or an LDAP filter.\n" -"\n" -"The targets include:\n" -"- attrs: list of attributes affected\n" -"- type: an object type (user, group, host, service, etc)\n" -"- memberof: members of a group\n" -"- targetgroup: grant access to modify a specific group. This is primarily\n" -" designed to enable users to add or remove members of a specific group.\n" -"- filter: A legal LDAP filter used to narrow the scope of the target.\n" -"- subtree: Used to apply a rule across an entire set of objects. For " -"example,\n" -" to allow adding users you need to grant \"add\" permission to the subtree\n" -" ldap://uid=*,cn=users,cn=accounts,dc=example,dc=com. The subtree option\n" -" is a fail-safe for objects that may not be covered by the type option.\n" -"\n" -"The permissions define what the ACI is allowed to do, and are one or\n" -"more of:\n" -"1. write - write one or more attributes\n" -"2. read - read one or more attributes\n" -"3. add - add a new entry to the tree\n" -"4. delete - delete an existing entry\n" -"5. all - all permissions are granted\n" -"\n" -"Note the distinction between attributes and entries. The permissions are\n" -"independent, so being able to add a user does not mean that the user will\n" -"be editable.\n" -"\n" -"The bind rule defines who this ACI grants permissions to. The LDAP server\n" -"allows this to be any valid LDAP entry but we encourage the use of\n" -"taskgroups so that the rights can be easily shared through roles.\n" -"\n" -"For a more thorough description of access controls see\n" -"http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control." -"html\n" -"\n" -"EXAMPLES:\n" -"\n" -"NOTE: ACIs are now added via the permission plugin. These examples are to\n" -"demonstrate how the various options work but this is done via the " -"permission\n" -"command-line now (see last example).\n" -"\n" -" Add an ACI so that the group \"secretaries\" can update the address on any " -"user:\n" -" ipa group-add --desc=\"Office secretaries\" secretaries\n" -" ipa aci-add --attrs=streetAddress --memberof=ipausers --group=secretaries " -"--permissions=write --prefix=none \"Secretaries write addresses\"\n" -"\n" -" Show the new ACI:\n" -" ipa aci-show --prefix=none \"Secretaries write addresses\"\n" -"\n" -" Add an ACI that allows members of the \"addusers\" permission to add new " -"users:\n" -" ipa aci-add --type=user --permission=addusers --permissions=add --" -"prefix=none \"Add new users\"\n" -"\n" -" Add an ACI that allows members of the editors manage members of the admins " -"group:\n" -" ipa aci-add --permissions=write --attrs=member --targetgroup=admins --" -"group=editors --prefix=none \"Editors manage admins\"\n" -"\n" -" Add an ACI that allows members of the admins group to manage the street and " -"zip code of those in the editors group:\n" -" ipa aci-add --permissions=write --memberof=editors --group=admins --" -"attrs=street --attrs=postalcode --prefix=none \"admins edit the address of " -"editors\"\n" -"\n" -" Add an ACI that allows the admins group manage the street and zipcode of " -"those who work for the boss:\n" -" ipa aci-add --permissions=write --group=admins --attrs=street --" -"attrs=postalcode --filter=\"(manager=uid=boss,cn=users,cn=accounts," -"dc=example,dc=com)\" --prefix=none \"Edit the address of those who work for " -"the boss\"\n" -"\n" -" Add an entirely new kind of record to IPA that isn't covered by any of the " -"--type options, creating a permission:\n" -" ipa permission-add --permissions=add --subtree=\"cn=*,cn=orange," -"cn=accounts,dc=example,dc=com\" --desc=\"Add Orange Entries\" add_orange\n" -"\n" -"\n" -"The show command shows the raw 389-ds ACI.\n" -"\n" -"IMPORTANT: When modifying the target attributes of an existing ACI you\n" -"must include all existing attributes as well. When doing an aci-mod the\n" -"targetattr REPLACES the current attributes, it does not add to them.\n" +"Plugins not accessible directly through the CLI, commands used internally\n" msgstr "" -#: ipaserver/plugins/aci.py:165 -msgid "A list of ACI values" +#: ipaserver/plugins/internal.py:38 +msgid "Export plugin meta-data for the webUI." msgstr "" -#: ipaserver/plugins/aci.py:229 -msgid "type, filter, subtree and targetgroup are mutually exclusive" +#: ipaserver/plugins/internal.py:44 ipaserver/plugins/internal.py:53 +msgid "Name of object to export" msgstr "" -#: ipaserver/plugins/aci.py:232 -msgid "ACI prefix is required" +#: ipaserver/plugins/internal.py:47 ipaserver/plugins/internal.py:56 +msgid "Name of method to export" msgstr "" -#: ipaserver/plugins/aci.py:235 +#: ipaserver/plugins/internal.py:59 +msgid "Name of command to export" +msgstr "" + +#: ipaserver/plugins/internal.py:64 +msgid "Dict of JSON encoded IPA Objects" +msgstr "" + +#: ipaserver/plugins/internal.py:65 +msgid "Dict of JSON encoded IPA Methods" +msgstr "" + +#: ipaserver/plugins/internal.py:66 +msgid "Dict of JSON encoded IPA Commands" +msgstr "" + +#: ipaserver/plugins/internal.py:151 +msgid "Internationalization messages" +msgstr "" + +#: ipaserver/plugins/internal.py:157 +msgid "Your session has expired. Please log in again." +msgstr "" + +#: ipaserver/plugins/internal.py:161 ipaserver/plugins/internal.py:205 +msgid "Apply" +msgstr "" + +#: ipaserver/plugins/internal.py:162 +msgid "Rebuild auto membership" +msgstr "" + +#: ipaserver/plugins/internal.py:163 +msgid "Are you sure you want to rebuild auto membership?" +msgstr "" + +#: ipaserver/plugins/internal.py:164 ipaserver/plugins/automember.py:799 +msgid "Automember rebuild membership task completed" +msgstr "" + +#: ipaserver/plugins/internal.py:165 +msgid "Are you sure you want to proceed with the action?" +msgstr "" + +#: ipaserver/plugins/internal.py:166 +#, python-brace-format +msgid "Are you sure you want to delete ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:167 +#, python-brace-format +msgid "Are you sure you want to disable ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:168 +#, python-brace-format +msgid "Are you sure you want to enable ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:169 +msgid "Actions" +msgstr "" + +#: ipaserver/plugins/internal.py:172 ipaserver/plugins/internal.py:200 +#: ipaserver/plugins/internal.py:262 +msgid "Add" +msgstr "" + +#: ipaserver/plugins/internal.py:173 +#, python-brace-format +msgid "${count} item(s) added" +msgstr "" + +#: ipaserver/plugins/internal.py:174 +msgid "Direct Membership" +msgstr "" + +#: ipaserver/plugins/internal.py:175 +#, python-brace-format +msgid "Filter available ${other_entity}" +msgstr "" + +#: ipaserver/plugins/internal.py:176 +msgid "Indirect Membership" +msgstr "" + +#: ipaserver/plugins/internal.py:177 +msgid "No entries." +msgstr "" + +#: ipaserver/plugins/internal.py:178 +#, python-brace-format +msgid "Showing ${start} to ${end} of ${total} entries." +msgstr "" + +#: ipaserver/plugins/internal.py:179 ipaserver/plugins/internal.py:277 +msgid "Remove" +msgstr "" + +#: ipaserver/plugins/internal.py:180 +#, python-brace-format +msgid "${count} item(s) removed" +msgstr "" + +#: ipaserver/plugins/internal.py:181 +msgid "Show Results" +msgstr "" + +#: ipaserver/plugins/internal.py:184 +msgid "Authentication indicators" +msgstr "" + +#: ipaserver/plugins/internal.py:185 +msgid "Authentication indicator" +msgstr "" + +#: ipaserver/plugins/internal.py:186 msgid "" -"at least one of: type, filter, subtree, targetgroup, attrs or memberof are " -"required" +"

Implicit method (password) will be used if no method is chosen.

Password + Two-factor: LDAP and Kerberos allow " +"authentication with either one of the authentication types but Kerberos uses " +"pre-authentication method which requires to use armor ccache.

RADIUS with another type: Kerberos always use RADIUS, " +"but LDAP never does. LDAP only recognize the password and two-factor " +"authentication options.

" msgstr "" -#: ipaserver/plugins/aci.py:238 -msgid "filter and memberof are mutually exclusive" +#: ipaserver/plugins/internal.py:187 +msgid "Add Custom Authentication Indicator" msgstr "" -#: ipaserver/plugins/aci.py:244 -msgid "group, permission and self are mutually exclusive" +#: ipaserver/plugins/internal.py:188 ipaserver/plugins/internal.py:1674 +#: ipaserver/plugins/passwd.py:107 ipaclient/remote_plugins/2_114/passwd.py:74 +msgid "OTP" msgstr "" -#: ipaserver/plugins/aci.py:246 -msgid "One of group, permission or self is required" -msgstr "" - -#: ipaserver/plugins/aci.py:269 -#, python-format -msgid "Group '%s' does not exist" -msgstr "" - -#: ipaserver/plugins/aci.py:295 -msgid "empty filter" -msgstr "" - -#: ipaserver/plugins/aci.py:316 -#, python-format -msgid "Syntax Error: %(error)s" -msgstr "" - -#: ipaserver/plugins/aci.py:361 -#, python-format -msgid "invalid DN (%s)" -msgstr "" - -#: ipaserver/plugins/aci.py:408 -#, python-format -msgid "ACI with name \"%s\" not found" -msgstr "" - -#: ipaserver/plugins/aci.py:427 ipaclient/remote_plugins/2_114/aci.py:278 -msgid "ACI prefix" -msgstr "" - -#: ipaserver/plugins/aci.py:428 ipaclient/remote_plugins/2_114/aci.py:279 -msgid "" -"Prefix used to distinguish ACI types (permission, delegation, selfservice, " -"none)" -msgstr "" - -#: ipaserver/plugins/aci.py:437 -msgid "ACI object." -msgstr "" - -#: ipaserver/plugins/aci.py:440 -msgid "ACIs" -msgstr "" - -#: ipaserver/plugins/aci.py:445 ipaclient/remote_plugins/2_114/aci.py:128 -msgid "ACI name" -msgstr "" - -#: ipaserver/plugins/aci.py:451 ipaserver/plugins/permission.py:231 -msgid "Permission" -msgstr "" - -#: ipaserver/plugins/aci.py:452 ipaclient/remote_plugins/2_114/aci.py:134 -msgid "Permission ACI grants access to" -msgstr "" - -#: ipaserver/plugins/aci.py:457 ipaserver/plugins/delegation.py:97 -msgid "User group" -msgstr "" - -#: ipaserver/plugins/aci.py:458 ipaserver/plugins/delegation.py:98 -msgid "User group ACI grants access to" -msgstr "" - -#: ipaserver/plugins/aci.py:464 ipaclient/remote_plugins/2_114/aci.py:146 -msgid "Permissions to grant(read, write, add, delete, all)" -msgstr "" - -#: ipaserver/plugins/aci.py:471 ipaclient/remote_plugins/2_114/aci.py:152 -msgid "Attributes to which the permission applies" -msgstr "" - -#: ipaserver/plugins/aci.py:477 ipaserver/plugins/otptoken.py:165 -#: ipaserver/plugins/permission.py:346 ipaserver/plugins/schema.py:447 -#: ipaserver/plugins/vault.py:600 ipaclient/remote_plugins/2_114/aci.py:158 -msgid "Type" -msgstr "" - -#: ipaserver/plugins/aci.py:478 ipaclient/remote_plugins/2_114/aci.py:159 -msgid "type of IPA object (user, group, host, hostgroup, service, netgroup)" -msgstr "" - -#: ipaserver/plugins/aci.py:484 ipaclient/remote_plugins/2_114/aci.py:164 -msgid "Member of" -msgstr "" - -#: ipaserver/plugins/aci.py:485 ipaclient/remote_plugins/2_114/aci.py:165 -msgid "Member of a group" -msgstr "" - -#: ipaserver/plugins/aci.py:490 ipaserver/plugins/internal.py:216 -#: ipaserver/plugins/internal.py:1204 ipaserver/plugins/internal.py:1705 -msgid "Filter" -msgstr "" - -#: ipaserver/plugins/aci.py:491 ipaclient/remote_plugins/2_114/aci.py:171 -msgid "Legal LDAP filter (e.g. ou=Engineering)" -msgstr "" - -#: ipaserver/plugins/aci.py:496 ipaserver/plugins/permission.py:289 -msgid "Subtree" -msgstr "" - -#: ipaserver/plugins/aci.py:497 ipaclient/remote_plugins/2_114/aci.py:177 -msgid "Subtree to apply ACI to" -msgstr "" - -#: ipaserver/plugins/aci.py:502 ipaserver/plugins/permission.py:340 -msgid "Target group" -msgstr "" - -#: ipaserver/plugins/aci.py:503 ipaclient/remote_plugins/2_114/aci.py:183 -msgid "Group to apply ACI to" -msgstr "" - -#: ipaserver/plugins/aci.py:508 ipaclient/remote_plugins/2_114/aci.py:188 -msgid "Target your own entry (self)" -msgstr "" - -#: ipaserver/plugins/aci.py:509 ipaclient/remote_plugins/2_114/aci.py:189 -msgid "Apply ACI to your own entry (self)" -msgstr "" - -#: ipaserver/plugins/aci.py:522 ipaclient/remote_plugins/2_114/aci.py:196 -msgid "Create new ACI." -msgstr "" - -#: ipaserver/plugins/aci.py:524 -#, python-format -msgid "Created ACI \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/aci.py:529 ipaclient/remote_plugins/2_114/aci.py:284 -msgid "Test the ACI syntax but don't write anything" -msgstr "" - -#: ipaserver/plugins/aci.py:574 ipaclient/remote_plugins/2_114/aci.py:321 -msgid "Delete ACI." -msgstr "" - -#: ipaserver/plugins/aci.py:577 -#, python-format -msgid "Deleted ACI \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/aci.py:613 ipaclient/remote_plugins/2_114/aci.py:518 -msgid "Modify ACI." -msgstr "" - -#: ipaserver/plugins/aci.py:620 -#, python-format -msgid "Modified ACI \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/aci.py:674 ipaclient/remote_plugins/2_114/aci.py:361 -msgid "" -"\n" -"Search for ACIs.\n" -"\n" -" Returns a list of ACIs\n" -"\n" -" EXAMPLES:\n" -"\n" -" To find all ACIs that apply directly to members of the group ipausers:\n" -" ipa aci-find --memberof=ipausers\n" -"\n" -" To find all ACIs that grant add access:\n" -" ipa aci-find --permissions=add\n" -"\n" -" Note that the find command only looks for the given text in the set of\n" -" ACIs, it does not evaluate the ACIs to see if something would apply.\n" -" For example, searching on memberof=ipausers will find all ACIs that\n" -" have ipausers as a memberof. There may be other ACIs that apply to\n" -" members of that group indirectly.\n" -" " -msgstr "" - -#: ipaserver/plugins/aci.py:694 -#, python-format -msgid "%(count)d ACI matched" -msgid_plural "%(count)d ACIs matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/aci.py:880 ipaclient/remote_plugins/2_114/aci.py:760 -msgid "Display a single ACI given an ACI name." -msgstr "" - -#: ipaserver/plugins/aci.py:886 ipaclient/remote_plugins/2_114/aci.py:782 -msgid "Location of the ACI" -msgstr "" - -#: ipaserver/plugins/aci.py:919 ipaclient/remote_plugins/2_114/aci.py:637 -msgid "Rename an ACI." -msgstr "" - -#: ipaserver/plugins/aci.py:925 ipaclient/remote_plugins/2_114/aci.py:725 -msgid "New ACI name" -msgstr "" - -#: ipaserver/plugins/aci.py:929 -#, python-format -msgid "Renamed ACI to \"%(value)s\"" +#: ipaserver/plugins/internal.py:189 +msgid "Two factor authentication (password + OTP)" msgstr "" +#: ipaserver/plugins/internal.py:190 ipaserver/plugins/internal.py:408 +#: ipaserver/plugins/internal.py:1680 ipaserver/plugins/migration.py:534 #: ipaserver/plugins/baseldap.py:49 ipaserver/plugins/baseuser.py:277 -#: ipaserver/plugins/internal.py:190 ipaserver/plugins/internal.py:407 -#: ipaserver/plugins/internal.py:1676 ipaserver/plugins/migration.py:534 #: ipaclient/plugins/otptoken.py:143 ipaclient/remote_plugins/2_114/host.py:187 msgid "Password" msgstr "" -#: ipaserver/plugins/baseldap.py:52 ipaclient/frontend.py:28 -#: ipaclient/frontend.py:90 -msgid "Failed members" +#: ipaserver/plugins/internal.py:191 +msgid "RADIUS" msgstr "" -#: ipaserver/plugins/baseldap.py:55 ipaclient/remote_plugins/2_114/role.py:74 -msgid "Member users" +#: ipaserver/plugins/internal.py:193 +msgid "Hardened Password (by SPAKE or FAST)" msgstr "" -#: ipaserver/plugins/baseldap.py:58 ipaclient/remote_plugins/2_114/role.py:79 -msgid "Member groups" +#: ipaserver/plugins/internal.py:194 +msgid "Disable per-user override" msgstr "" -#: ipaserver/plugins/baseldap.py:61 ipaclient/remote_plugins/2_114/user.py:283 -msgid "Member of groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:64 -msgid "Member hosts" -msgstr "" - -#: ipaserver/plugins/baseldap.py:67 -msgid "Member host-groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:70 ipaclient/remote_plugins/2_114/host.py:192 -msgid "Member of host-groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:79 ipaserver/plugins/role.py:139 -msgid "Roles" -msgstr "" - -#: ipaserver/plugins/baseldap.py:82 ipaserver/plugins/sudocmdgroup.py:118 -#: ipaserver/plugins/sudocmdgroup.py:138 -msgid "Sudo Command Groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:88 -msgid "Granting privilege to roles" -msgstr "" - -#: ipaserver/plugins/baseldap.py:91 -msgid "Member netgroups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:94 ipaclient/remote_plugins/2_114/host.py:202 -msgid "Member of netgroups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:97 ipaclient/remote_plugins/2_114/role.py:99 -msgid "Member services" -msgstr "" - -#: ipaserver/plugins/baseldap.py:100 -msgid "Member service groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:106 -msgid "Member HBAC service" -msgstr "" - -#: ipaserver/plugins/baseldap.py:109 -msgid "Member HBAC service groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:124 -msgid "Indirect Member users" -msgstr "" - -#: ipaserver/plugins/baseldap.py:127 -msgid "Indirect Member groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:130 -msgid "Indirect Member hosts" -msgstr "" - -#: ipaserver/plugins/baseldap.py:133 -msgid "Indirect Member host-groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:136 -msgid "Indirect Member of roles" -msgstr "" - -#: ipaserver/plugins/baseldap.py:139 -msgid "Indirect Member permissions" -msgstr "" - -#: ipaserver/plugins/baseldap.py:142 -msgid "Indirect Member HBAC service" -msgstr "" - -#: ipaserver/plugins/baseldap.py:145 -msgid "Indirect Member HBAC service group" -msgstr "" - -#: ipaserver/plugins/baseldap.py:148 -msgid "Indirect Member netgroups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:169 ipaclient/frontend.py:32 -msgid "Failed source hosts/hostgroups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:172 ipaclient/frontend.py:36 -msgid "Failed hosts/hostgroups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:175 ipaclient/frontend.py:40 -msgid "Failed users/groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:178 ipaclient/frontend.py:44 -msgid "Failed service/service groups" -msgstr "" - -#: ipaserver/plugins/baseldap.py:181 ipaclient/frontend.py:48 -msgid "Failed to remove" -msgstr "" - -#: ipaserver/plugins/baseldap.py:185 ipaclient/frontend.py:53 -msgid "Failed RunAs" -msgstr "" - -#: ipaserver/plugins/baseldap.py:188 ipaclient/frontend.py:57 -msgid "Failed RunAsGroup" -msgstr "" - -#: ipaserver/plugins/baseldap.py:206 -msgid "Invalid format. Should be name=value" -msgstr "" - -#: ipaserver/plugins/baseldap.py:326 -msgid "External host" -msgstr "" - -#: ipaserver/plugins/baseldap.py:503 -msgid "An IPA master host cannot be deleted or disabled" -msgstr "" - -#: ipaserver/plugins/baseldap.py:534 -msgid "entry" -msgstr "" - -#: ipaserver/plugins/baseldap.py:535 -msgid "entries" -msgstr "" - -#: ipaserver/plugins/baseldap.py:573 ipaserver/plugins/baseldap.py:574 -msgid "Entry" -msgstr "" - -#: ipaserver/plugins/baseldap.py:577 -#, python-format -msgid "container entry (%(container)s) not found" -msgstr "" - -#: ipaserver/plugins/baseldap.py:578 -#, python-format -msgid "%(parent)s: %(oname)s not found" -msgstr "" - -#: ipaserver/plugins/baseldap.py:579 ipaserver/plugins/schema.py:263 -#: ipaserver/plugins/schema.py:332 ipaserver/plugins/schema.py:423 -#: ipaserver/plugins/schema.py:658 ipaserver/plugins/schema.py:751 -#, python-format -msgid "%(pkey)s: %(oname)s not found" -msgstr "" - -#: ipaserver/plugins/baseldap.py:580 -#, python-format -msgid "%(oname)s with name \"%(pkey)s\" already exists" -msgstr "" - -#: ipaserver/plugins/baseldap.py:867 ipaserver/plugins/baseldap.py:875 -#: ipaserver/plugins/baseldap.py:880 -#, python-format -msgid "attribute \"%(attribute)s\" not allowed" -msgstr "" - -#: ipaserver/plugins/baseldap.py:890 +#: ipaserver/plugins/internal.py:195 msgid "" -"Set an attribute to a name/value pair. Format is attr=value.\n" -"For multi-valued attributes, the command replaces the values already present." +"

Per-user setting, overwrites the global setting if any option is checked." +"

Password + Two-factor: LDAP and Kerberos allow " +"authentication with either one of the authentication types but Kerberos uses " +"pre-authentication method which requires to use armor ccache.

RADIUS with another type: Kerberos always use RADIUS, " +"but LDAP never does. LDAP only recognize the password and two-factor " +"authentication options.

" msgstr "" -#: ipaserver/plugins/baseldap.py:896 +#: ipaserver/plugins/internal.py:198 ipaserver/plugins/internal.py:272 +#: ipaserver/plugins/internal.py:1694 +msgid "About" +msgstr "" + +#: ipaserver/plugins/internal.py:199 +msgid "Activate" +msgstr "" + +#: ipaserver/plugins/internal.py:201 +msgid "Add and Add Another" +msgstr "" + +#: ipaserver/plugins/internal.py:202 +msgid "Add and Close" +msgstr "" + +#: ipaserver/plugins/internal.py:203 +msgid "Add and Edit" +msgstr "" + +#: ipaserver/plugins/internal.py:204 +msgid "Add Many" +msgstr "" + +#: ipaserver/plugins/internal.py:206 +msgid "Back" +msgstr "" + +#: ipaserver/plugins/internal.py:207 +msgid "Cancel" +msgstr "" + +#: ipaserver/plugins/internal.py:208 +msgid "Clear" +msgstr "" + +#: ipaserver/plugins/internal.py:209 +msgid "Clear all fields on the page." +msgstr "" + +#: ipaserver/plugins/internal.py:210 +msgid "Close" +msgstr "" + +#: ipaserver/plugins/internal.py:211 ipaserver/plugins/internal.py:1898 +msgid "Disable" +msgstr "" + +#: ipaserver/plugins/internal.py:212 ipaserver/plugins/internal.py:643 +msgid "Download" +msgstr "" + +#: ipaserver/plugins/internal.py:213 +msgid "Download certificate as PEM formatted file." +msgstr "" + +#: ipaserver/plugins/internal.py:214 +msgid "Edit" +msgstr "" + +#: ipaserver/plugins/internal.py:215 ipaserver/plugins/internal.py:1900 +msgid "Enable" +msgstr "" + +#: ipaserver/plugins/internal.py:216 ipaserver/plugins/internal.py:1208 +#: ipaserver/plugins/internal.py:1709 ipaserver/plugins/aci.py:490 +msgid "Filter" +msgstr "" + +#: ipaserver/plugins/internal.py:217 +msgid "Find" +msgstr "" + +#: ipaserver/plugins/internal.py:218 +msgid "Get" +msgstr "" + +#: ipaserver/plugins/internal.py:219 +msgid "Hide" +msgstr "" + +#: ipaserver/plugins/internal.py:220 +msgid "Issue" +msgstr "" + +#: ipaserver/plugins/internal.py:221 +msgid "Match" +msgstr "" + +#: ipaserver/plugins/internal.py:222 +msgid "Match users according to certificate." +msgstr "" + +#: ipaserver/plugins/internal.py:223 +msgid "Migrate" +msgstr "" + +#: ipaserver/plugins/internal.py:224 +msgid "OK" +msgstr "" + +#: ipaserver/plugins/internal.py:225 +msgid "Refresh" +msgstr "" + +#: ipaserver/plugins/internal.py:226 +msgid "Reload current settings from the server." +msgstr "" + +#: ipaserver/plugins/internal.py:227 +msgid "Delete" +msgstr "" + +#: ipaserver/plugins/internal.py:228 ipaserver/plugins/internal.py:684 +msgid "Remove hold" +msgstr "" + +#: ipaserver/plugins/internal.py:229 +msgid "Reset" +msgstr "" + +#: ipaserver/plugins/internal.py:230 ipaserver/plugins/internal.py:1687 +msgid "Reset Password" +msgstr "" + +#: ipaserver/plugins/internal.py:231 +msgid "Reset Password and Log in" +msgstr "" + +#: ipaserver/plugins/internal.py:232 +msgid "Restore" +msgstr "" + +#: ipaserver/plugins/internal.py:233 +msgid "Retry" +msgstr "" + +#: ipaserver/plugins/internal.py:234 +msgid "Revert" +msgstr "" + +#: ipaserver/plugins/internal.py:236 +msgid "Revoke" +msgstr "" + +#: ipaserver/plugins/internal.py:237 +msgid "Save" +msgstr "" + +#: ipaserver/plugins/internal.py:238 +msgid "Set" +msgstr "" + +#: ipaserver/plugins/internal.py:239 +msgid "Show" +msgstr "" + +#: ipaserver/plugins/internal.py:240 +msgid "Stage" +msgstr "" + +#: ipaserver/plugins/internal.py:242 +msgid "Update" +msgstr "" + +#: ipaserver/plugins/internal.py:243 +msgid "View" +msgstr "" + +#: ipaserver/plugins/internal.py:246 ipaserver/plugins/internal.py:1695 +msgid "Customization" +msgstr "" + +#: ipaserver/plugins/internal.py:247 +msgid "Pagination Size" +msgstr "" + +#: ipaserver/plugins/internal.py:250 +msgid "Collapse All" +msgstr "" + +#: ipaserver/plugins/internal.py:251 +msgid "Expand All" +msgstr "" + +#: ipaserver/plugins/internal.py:252 +msgid "General" +msgstr "" + +#: ipaserver/plugins/internal.py:253 +msgid "Identity Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:254 +msgid "Record Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:255 +#, python-brace-format +msgid "${entity} ${primary_key} Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:256 +msgid "Back to Top" +msgstr "" + +#: ipaserver/plugins/internal.py:257 +#, python-brace-format +msgid "${entity} ${primary_key} updated" +msgstr "" + +#: ipaserver/plugins/internal.py:260 +#, python-brace-format +msgid "${entity} successfully added" +msgstr "" + +#: ipaserver/plugins/internal.py:261 +msgid "Add custom value" +msgstr "" + +#: ipaserver/plugins/internal.py:263 +msgid "Available" +msgstr "" + +#: ipaserver/plugins/internal.py:264 +msgid "Some operations failed." +msgstr "" + +#: ipaserver/plugins/internal.py:265 +msgid "Operations Error" +msgstr "" + +#: ipaserver/plugins/internal.py:266 +msgid "Confirmation" +msgstr "" + +#: ipaserver/plugins/internal.py:267 +msgid "Custom value" +msgstr "" + +#: ipaserver/plugins/internal.py:268 +msgid "This page has unsaved changes. Please save or revert." +msgstr "" + +#: ipaserver/plugins/internal.py:269 +msgid "Unsaved Changes" +msgstr "" + +#: ipaserver/plugins/internal.py:270 +#, python-brace-format +msgid "Edit ${entity}" +msgstr "" + +#: ipaserver/plugins/internal.py:271 +msgid "Hide details" +msgstr "" + +#: ipaserver/plugins/internal.py:273 +#, python-brace-format +msgid "${product}, version: ${version}" +msgstr "" + +#: ipaserver/plugins/internal.py:274 +msgid "Prospective" +msgstr "" + +#: ipaserver/plugins/internal.py:275 +msgid "Redirection" +msgstr "" + +#: ipaserver/plugins/internal.py:276 +msgid "Select entries to be removed." +msgstr "" + +#: ipaserver/plugins/internal.py:278 +msgid "Result" +msgstr "" + +#: ipaserver/plugins/internal.py:279 +msgid "Show details" +msgstr "" + +#: ipaserver/plugins/internal.py:280 +msgid "Success" +msgstr "" + +#: ipaserver/plugins/internal.py:281 +msgid "Validation error" +msgstr "" + +#: ipaserver/plugins/internal.py:282 +msgid "Input form contains invalid or missing values." +msgstr "" + +#: ipaserver/plugins/internal.py:285 +msgid "Please try the following options:" +msgstr "" + +#: ipaserver/plugins/internal.py:286 +msgid "If the problem persists please contact the system administrator." +msgstr "" + +#: ipaserver/plugins/internal.py:287 +msgid "Refresh the page." +msgstr "" + +#: ipaserver/plugins/internal.py:288 +msgid "Reload the browser." +msgstr "" + +#: ipaserver/plugins/internal.py:289 +msgid "Return to the main page and retry the operation" +msgstr "" + +#: ipaserver/plugins/internal.py:290 +#, python-brace-format +msgid "An error has occurred (${error})" +msgstr "" + +#: ipaserver/plugins/internal.py:293 ipaclient/plugins/cert.py:190 +msgid "Error" +msgstr "" + +#: ipaserver/plugins/internal.py:294 +msgid "HTTP Error" +msgstr "" + +#: ipaserver/plugins/internal.py:295 +msgid "Internal Error" +msgstr "" + +#: ipaserver/plugins/internal.py:296 +msgid "IPA Error" +msgstr "" + +#: ipaserver/plugins/internal.py:297 +msgid "No response" +msgstr "" + +#: ipaserver/plugins/internal.py:298 +msgid "Unknown Error" +msgstr "" + +#: ipaserver/plugins/internal.py:299 +msgid "URL" +msgstr "" + +#: ipaserver/plugins/internal.py:302 +#, python-brace-format +msgid "${primary_key} is managed by:" +msgstr "" + +#: ipaserver/plugins/internal.py:303 +#, python-brace-format +msgid "${primary_key} members:" +msgstr "" + +#: ipaserver/plugins/internal.py:304 +#, python-brace-format +msgid "${primary_key} is a member of:" +msgstr "" + +#: ipaserver/plugins/internal.py:305 +#, python-brace-format +msgid "${primary_key} member managers:" +msgstr "" + +#: ipaserver/plugins/internal.py:308 +msgid "Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:309 ipaserver/plugins/internal.py:1708 +msgid "Search" +msgstr "" + +#: ipaserver/plugins/internal.py:311 +msgid "False" +msgstr "" + +#: ipaserver/plugins/internal.py:314 +#, python-brace-format +msgid "Allow user groups to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:317 +#, python-brace-format +msgid "Allow user groups to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:320 +#, python-brace-format +msgid "Allow host groups to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:323 +#, python-brace-format +msgid "Allow host groups to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:326 +#, python-brace-format +msgid "Allow hosts to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:329 +#, python-brace-format +msgid "Allow hosts to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:332 +#, python-brace-format +msgid "Allow users to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:335 +#, python-brace-format +msgid "Allow users to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:337 +msgid "Allowed to create keytab" +msgstr "" + +#: ipaserver/plugins/internal.py:338 +msgid "Allowed to retrieve keytab" +msgstr "" + +#: ipaserver/plugins/internal.py:340 +#, python-brace-format +msgid "Disallow user groups to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:343 +#, python-brace-format +msgid "Disallow user groups to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:346 +#, python-brace-format +msgid "Disallow host groups to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:349 +#, python-brace-format +msgid "Disallow host groups to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:352 +#, python-brace-format +msgid "Disallow hosts to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:355 +#, python-brace-format +msgid "Disallow hosts to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:358 +#, python-brace-format +msgid "Disallow users to create keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:361 +#, python-brace-format +msgid "Disallow users to retrieve keytab of '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:365 +msgid "Add Kerberos Principal Alias" +msgstr "" + +#: ipaserver/plugins/internal.py:366 +msgid "New kerberos principal alias" +msgstr "" + +#: ipaserver/plugins/internal.py:367 +msgid "Remove Kerberos Alias" +msgstr "" + +#: ipaserver/plugins/internal.py:368 +#, python-brace-format +msgid "Do you want to remove kerberos alias ${alias}?" +msgstr "" + +#: ipaserver/plugins/internal.py:371 +msgid "Inherited from server configuration" +msgstr "" + +#: ipaserver/plugins/internal.py:372 +msgid "MS-PAC" +msgstr "" + +#: ipaserver/plugins/internal.py:373 +msgid "Override inherited settings" +msgstr "" + +#: ipaserver/plugins/internal.py:374 +msgid "PAD" +msgstr "" + +#: ipaserver/plugins/internal.py:377 +msgid "Authenticating" +msgstr "" + +#: ipaserver/plugins/internal.py:379 +msgid "Authentication with personal certificate failed" +msgstr "" + +#: ipaserver/plugins/internal.py:381 msgid "" -"Add an attribute/value pair. Format is attr=value. The attribute\n" -"must be part of the schema." +" To log in with certificate, please make sure you have valid personal certificate. " msgstr "" -#: ipaserver/plugins/baseldap.py:902 +#: ipaserver/plugins/internal.py:385 +msgid "Continue to next page" +msgstr "" + +#: ipaserver/plugins/internal.py:387 msgid "" -"Delete an attribute/value pair. The option will be evaluated\n" -"last, after all sets and adds." +" To log in with username and " +"password, enter them in the corresponding fields, then click 'Log " +"in'." msgstr "" -#: ipaserver/plugins/baseldap.py:938 -msgid "attribute is not configurable" +#: ipaserver/plugins/internal.py:390 +msgid "Login failed due to an unknown reason" msgstr "" -#: ipaserver/plugins/baseldap.py:1041 -msgid "No such attribute on this entry" +#: ipaserver/plugins/internal.py:391 +msgid "Logged In As" msgstr "" -#: ipaserver/plugins/baseldap.py:1136 ipaserver/plugins/cert.py:1327 -msgid "Suppress processing of membership attributes." +#: ipaserver/plugins/internal.py:392 +msgid "Authentication with Kerberos failed" msgstr "" -#: ipaserver/plugins/baseldap.py:1290 -msgid "Continuous mode: Don't stop on errors." -msgstr "" - -#: ipaserver/plugins/baseldap.py:1311 ipaserver/plugins/baseldap.py:1386 -msgid "Rights" -msgstr "" - -#: ipaserver/plugins/baseldap.py:1312 ipaserver/plugins/baseldap.py:1387 +#: ipaserver/plugins/internal.py:394 +#, python-brace-format msgid "" -"Display the access rights of this entry (requires --all). See ipa man page " -"for details." +" To log in with Kerberos, please make sure you have valid tickets (obtainable via kinit) and " +"configured the " +"browser correctly, then click 'Log in'." msgstr "" -#: ipaserver/plugins/baseldap.py:1396 -msgid "Rename" +#: ipaserver/plugins/internal.py:399 +msgid "Loading" msgstr "" -#: ipaserver/plugins/baseldap.py:1397 -#, python-format -msgid "Rename the %(ldap_obj_name)s object" +#: ipaserver/plugins/internal.py:401 +msgid "Kerberos Principal you entered is expired" msgstr "" -#: ipaserver/plugins/baseldap.py:1495 ipaserver/plugins/baseldap.py:2403 -msgid "the entry was deleted while being modified" +#: ipaserver/plugins/internal.py:402 +msgid "Loading data" msgstr "" -#: ipaserver/plugins/baseldap.py:1628 ipaserver/plugins/baseldap.py:2130 -#, python-format -msgid "%s" +#: ipaserver/plugins/internal.py:403 +msgid "Log in" msgstr "" -#: ipaserver/plugins/baseldap.py:1629 -#: ipaserver/plugins/servicedelegation.py:187 -#: ipaserver/plugins/servicedelegation.py:268 -#, python-format -msgid "member %s" +#: ipaserver/plugins/internal.py:404 +msgid "Log In Using Certificate" msgstr "" -#: ipaserver/plugins/baseldap.py:1671 ipaserver/plugins/baseldap.py:2154 -#, python-format -msgid "%s to add" +#: ipaserver/plugins/internal.py:405 +msgid "Log in using personal certificate" msgstr "" -#: ipaserver/plugins/baseldap.py:1679 ipaserver/plugins/baseldap.py:2166 -#: ipaserver/plugins/privilege.py:226 ipaserver/plugins/privilege.py:257 -#: ipaserver/plugins/role.py:222 ipaserver/plugins/role.py:246 -msgid "Members that could not be added" +#: ipaserver/plugins/internal.py:406 ipaserver/plugins/internal.py:1696 +msgid "Log out" msgstr "" -#: ipaserver/plugins/baseldap.py:1683 ipaserver/plugins/baseldap.py:2170 -msgid "Number of members added" +#: ipaserver/plugins/internal.py:407 +msgid "Log out error" msgstr "" -#: ipaserver/plugins/baseldap.py:1770 ipaserver/plugins/baseldap.py:2253 -#, python-format -msgid "%s to remove" +#: ipaserver/plugins/internal.py:409 ipaserver/plugins/internal.py:1681 +msgid "Password or Password+One-Time-Password" msgstr "" -#: ipaserver/plugins/baseldap.py:1777 ipaserver/plugins/baseldap.py:2265 -msgid "Members that could not be removed" +#: ipaserver/plugins/internal.py:410 +#, python-brace-format +msgid "You will be redirected in ${count}s" msgstr "" -#: ipaserver/plugins/baseldap.py:1781 ipaserver/plugins/baseldap.py:2269 -msgid "Number of members removed" +#: ipaserver/plugins/internal.py:411 +msgid "Sync OTP Token" msgstr "" -#: ipaserver/plugins/baseldap.py:1869 ipaserver/plugins/schema.py:127 -#: ipaserver/plugins/cert.py:1546 ipaclient/remote_plugins/2_114/aci.py:474 -msgid "Primary key only" +#: ipaserver/plugins/internal.py:412 +msgid "Synchronizing" msgstr "" -#: ipaserver/plugins/baseldap.py:1870 ipaserver/plugins/schema.py:128 -#, python-format -msgid "Results should contain primary key attribute only (\"%s\")" +#: ipaserver/plugins/internal.py:413 +msgid "Username" msgstr "" -#: ipaserver/plugins/baseldap.py:1878 -#, python-format +#: ipaserver/plugins/internal.py:414 +msgid "The user account you entered is locked" +msgstr "" + +#: ipaserver/plugins/internal.py:417 +msgid "number of passwords" +msgstr "" + +#: ipaserver/plugins/internal.py:418 +msgid "seconds" +msgstr "" + +#: ipaserver/plugins/internal.py:421 +msgid "Migrating" +msgstr "" + +#: ipaserver/plugins/internal.py:423 +msgid "There was a problem with your request. Please, try again later." +msgstr "" + +#: ipaserver/plugins/internal.py:426 +msgid "Password migration was not successful" +msgstr "" + +#: ipaserver/plugins/internal.py:428 msgid "" -"Search for %(searched_object)s with these %(relationship)s %(ldap_object)s." +"

Password Migration

If you have been sent here by your " +"administrator, your personal information is being migrated to a new identity " +"management solution (IPA).

Please, enter your credentials in the form " +"to complete the process. Upon successful login your kerberos account will be " +"activated.

" msgstr "" -#: ipaserver/plugins/baseldap.py:1879 -#, python-format +#: ipaserver/plugins/internal.py:435 ipaserver/plugins/internal.py:1671 +msgid "The password or username you entered is incorrect" +msgstr "" + +#: ipaserver/plugins/internal.py:436 +msgid "Password migration was successful" +msgstr "" + +#: ipaserver/plugins/internal.py:440 ipaserver/plugins/internal.py:525 +#: ipaserver/plugins/internal.py:1207 +msgid "Attribute" +msgstr "" + +#: ipaserver/plugins/internal.py:443 +msgid "Add delegation" +msgstr "" + +#: ipaserver/plugins/internal.py:444 +msgid "Remove delegations" +msgstr "" + +#: ipaserver/plugins/internal.py:447 ipaserver/plugins/internal.py:779 +msgid "Add permission" +msgstr "" + +#: ipaserver/plugins/internal.py:449 +#, python-brace-format +msgid "Add privileges into permission '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:451 +msgid "Remove permissions" +msgstr "" + +#: ipaserver/plugins/internal.py:453 +#, python-brace-format +msgid "Remove privileges from permission '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:457 +msgid "Add privilege" +msgstr "" + +#: ipaserver/plugins/internal.py:459 +#, python-brace-format +msgid "Add privilege '${primary_key}' into permissions" +msgstr "" + +#: ipaserver/plugins/internal.py:462 +#, python-brace-format +msgid "Add roles into privilege '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:464 +msgid "Remove privileges" +msgstr "" + +#: ipaserver/plugins/internal.py:466 +#, python-brace-format +msgid "Remove privilege '${primary_key}' from permissions" +msgstr "" + +#: ipaserver/plugins/internal.py:469 +#, python-brace-format +msgid "Remove roles from privilege '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:473 +msgid "Role Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:474 +msgid "Add role" +msgstr "" + +#: ipaserver/plugins/internal.py:476 +#, python-brace-format +msgid "Add user groups into role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:479 +#, python-brace-format +msgid "Add hosts into role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:482 +#, python-brace-format +msgid "Add host groups into role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:485 +#, python-brace-format +msgid "Add role '${primary_key}' into privileges" +msgstr "" + +#: ipaserver/plugins/internal.py:488 +#, python-brace-format +msgid "Add services into role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:491 +#, python-brace-format +msgid "Add users into role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:493 +msgid "Remove roles" +msgstr "" + +#: ipaserver/plugins/internal.py:495 +#, python-brace-format +msgid "Remove role '${primary_key}' from privileges" +msgstr "" + +#: ipaserver/plugins/internal.py:498 +#, python-brace-format +msgid "Remove user groups from role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:501 +#, python-brace-format +msgid "Remove hosts from role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:504 +#, python-brace-format +msgid "Remove host groups from role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:507 +#, python-brace-format +msgid "Remove services from role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:510 +#, python-brace-format +msgid "Remove users from role '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:514 +msgid "Add self service permission" +msgstr "" + +#: ipaserver/plugins/internal.py:515 +msgid "Remove self service permissions" +msgstr "" + +#: ipaserver/plugins/internal.py:518 +msgid "Add rule" +msgstr "" + +#: ipaserver/plugins/internal.py:520 +#, python-brace-format +msgid "Add inclusive condition into '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:523 +#, python-brace-format +msgid "Add exclusive condition into '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:527 +msgid "Are you sure you want to change default group?" +msgstr "" + +#: ipaserver/plugins/internal.py:529 +msgid "Default host group" +msgstr "" + +#: ipaserver/plugins/internal.py:530 +msgid "Default user group" +msgstr "" + +#: ipaserver/plugins/internal.py:531 +msgid "Exclusive" +msgstr "" + +#: ipaserver/plugins/internal.py:532 +msgid "Expression" +msgstr "" + +#: ipaserver/plugins/internal.py:533 +msgid "Host group rule" +msgstr "" + +#: ipaserver/plugins/internal.py:534 +msgid "Host group rules" +msgstr "" + +#: ipaserver/plugins/internal.py:535 +msgid "Inclusive" +msgstr "" + +#: ipaserver/plugins/internal.py:536 +msgid "Remove auto membership rules" +msgstr "" + +#: ipaserver/plugins/internal.py:538 +#, python-brace-format +msgid "Remove exclusive conditions from rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:541 +#, python-brace-format +msgid "Remove inclusive conditions from rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:543 +msgid "User group rule" +msgstr "" + +#: ipaserver/plugins/internal.py:544 +msgid "User group rules" +msgstr "" + +#: ipaserver/plugins/internal.py:547 +msgid "Add automount key" +msgstr "" + +#: ipaserver/plugins/internal.py:548 +msgid "Remove automount keys" +msgstr "" + +#: ipaserver/plugins/internal.py:551 +msgid "Add automount location" +msgstr "" + +#: ipaserver/plugins/internal.py:552 +msgid "Automount Location Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:553 +msgid "Remove automount locations" +msgstr "" + +#: ipaserver/plugins/internal.py:556 +msgid "Add automount map" +msgstr "" + +#: ipaserver/plugins/internal.py:557 +msgid "Map Type" +msgstr "" + +#: ipaserver/plugins/internal.py:558 +msgid "Direct" +msgstr "" + +#: ipaserver/plugins/internal.py:559 +msgid "Indirect" +msgstr "" + +#: ipaserver/plugins/internal.py:560 +msgid "Remove automount maps" +msgstr "" + +#: ipaserver/plugins/internal.py:563 +msgid "Add certificate authority" +msgstr "" + +#: ipaserver/plugins/internal.py:564 +msgid "Remove certificate authorities" +msgstr "" + +#: ipaserver/plugins/internal.py:567 +msgid "Add CA ACL" +msgstr "" + +#: ipaserver/plugins/internal.py:569 +#, python-brace-format +msgid "Add Certificate Authorities into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:573 +#, python-brace-format +msgid "Add user groups into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:576 +#, python-brace-format +msgid "Add host groups into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:579 +#, python-brace-format +msgid "Add hosts into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:582 +#, python-brace-format +msgid "Add certificate profiles into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:585 +#, python-brace-format +msgid "Add services into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:588 +#, python-brace-format +msgid "Add users into CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:590 +msgid "All" +msgstr "" + +#: ipaserver/plugins/internal.py:591 +msgid "Any CA" +msgstr "" + +#: ipaserver/plugins/internal.py:592 ipaserver/plugins/internal.py:895 +#: ipaserver/plugins/internal.py:1152 ipaserver/plugins/internal.py:1274 +#: ipaserver/plugins/internal.py:1429 +msgid "Any Host" +msgstr "" + +#: ipaserver/plugins/internal.py:593 ipaserver/plugins/internal.py:896 +msgid "Any Service" +msgstr "" + +#: ipaserver/plugins/internal.py:594 +msgid "Any Profile" +msgstr "" + +#: ipaserver/plugins/internal.py:595 ipaserver/plugins/internal.py:897 +#: ipaserver/plugins/internal.py:1153 ipaserver/plugins/internal.py:1275 +#: ipaserver/plugins/internal.py:1430 +msgid "Anyone" +msgstr "" + +#: ipaserver/plugins/internal.py:596 ipaserver/plugins/internal.py:899 +#: ipaserver/plugins/internal.py:1435 +msgid "Rule status" +msgstr "" + +#: ipaserver/plugins/internal.py:597 +msgid "If no CAs are specified, requests to the default CA are allowed." +msgstr "" + +#: ipaserver/plugins/internal.py:598 ipaserver/plugins/caacl.py:216 +msgid "Profiles" +msgstr "" + +#: ipaserver/plugins/internal.py:599 +msgid "Remove CA ACLs" +msgstr "" + +#: ipaserver/plugins/internal.py:601 +#, python-brace-format +msgid "Remove Certificate Authorities from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:605 +#, python-brace-format +msgid "Remove user groups from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:608 +#, python-brace-format +msgid "Remove host groups from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:611 +#, python-brace-format +msgid "Remove hosts from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:614 +#, python-brace-format +msgid "Remove certificate profiles from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:617 +#, python-brace-format +msgid "Remove services from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:620 +#, python-brace-format +msgid "Remove users from CA ACL '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:622 +msgid "Specified CAs" +msgstr "" + +#: ipaserver/plugins/internal.py:623 ipaserver/plugins/internal.py:921 +#: ipaserver/plugins/internal.py:1179 ipaserver/plugins/internal.py:1290 +#: ipaserver/plugins/internal.py:1480 +msgid "Specified Hosts and Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:624 +msgid "Specified Profiles" +msgstr "" + +#: ipaserver/plugins/internal.py:625 ipaserver/plugins/internal.py:922 +msgid "Specified Services and Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:626 ipaserver/plugins/internal.py:923 +#: ipaserver/plugins/internal.py:1180 ipaserver/plugins/internal.py:1291 +#: ipaserver/plugins/internal.py:1481 +msgid "Specified Users and Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:627 +msgid "Permitted to have certificates issued" +msgstr "" + +#: ipaserver/plugins/internal.py:630 +msgid "Remove certificate profiles" +msgstr "" + +#: ipaserver/plugins/internal.py:633 +msgid "AA Compromise" +msgstr "" + +#: ipaserver/plugins/internal.py:634 +msgid "Add principal" +msgstr "" + +#: ipaserver/plugins/internal.py:635 +msgid "Affiliation Changed" +msgstr "" + +#: ipaserver/plugins/internal.py:636 ipaserver/plugins/ca.py:339 +#: ipaserver/plugins/ca.py:362 ipaserver/plugins/ca.py:402 +msgid "CA" +msgstr "" + +#: ipaserver/plugins/internal.py:637 +msgid "CA Compromise" +msgstr "" + +#: ipaserver/plugins/internal.py:639 ipaserver/plugins/internal.py:1910 +msgid "Certificates" +msgstr "" + +#: ipaserver/plugins/internal.py:640 +msgid "Certificate Hold" +msgstr "" + +#: ipaserver/plugins/internal.py:641 +msgid "Cessation of Operation" +msgstr "" + +#: ipaserver/plugins/internal.py:642 +msgid "Common Name" +msgstr "" + +#: ipaserver/plugins/internal.py:644 +msgid "the certificate with serial number " +msgstr "" + +#: ipaserver/plugins/internal.py:645 +msgid "Expires On" +msgstr "" + +#: ipaserver/plugins/internal.py:646 +msgid "Issued on from" +msgstr "" + +#: ipaserver/plugins/internal.py:647 +msgid "Issued on to" +msgstr "" + +#: ipaserver/plugins/internal.py:648 +msgid "Maximum serial number" +msgstr "" + +#: ipaserver/plugins/internal.py:649 +msgid "Minimum serial number" +msgstr "" + +#: ipaserver/plugins/internal.py:651 +msgid "Revoked on from" +msgstr "" + +#: ipaserver/plugins/internal.py:652 +msgid "Revoked on to" +msgstr "" + +#: ipaserver/plugins/internal.py:654 +msgid "Valid not after from" +msgstr "" + +#: ipaserver/plugins/internal.py:655 +msgid "Valid not after to" +msgstr "" + +#: ipaserver/plugins/internal.py:656 +msgid "Valid not before from" +msgstr "" + +#: ipaserver/plugins/internal.py:657 +msgid "Valid not before to" +msgstr "" + +#: ipaserver/plugins/internal.py:658 +msgid "Fingerprints" +msgstr "" + +#: ipaserver/plugins/internal.py:659 +msgid "Get Certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:660 +msgid "Certificate Hold Removed" +msgstr "" + +#: ipaserver/plugins/internal.py:662 +#, python-brace-format +msgid "Issue new certificate for host '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:665 +#, python-brace-format +msgid "Issue new certificate for service '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:668 +#, python-brace-format +msgid "Issue new certificate for user '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:670 +msgid "Issue new certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:671 +msgid "Issued By" +msgstr "" + +#: ipaserver/plugins/internal.py:672 +msgid "Issued On" +msgstr "" + +#: ipaserver/plugins/internal.py:673 +msgid "Issued To" +msgstr "" + +#: ipaserver/plugins/internal.py:674 +msgid "Key Compromise" +msgstr "" + +#: ipaserver/plugins/internal.py:675 +msgid "No Valid Certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:676 +msgid "New Certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:677 +msgid "Certificate in base64 or PEM format" +msgstr "" + +#: ipaserver/plugins/internal.py:678 +msgid "Note" +msgstr "" + +#: ipaserver/plugins/internal.py:679 +msgid "Organization" +msgstr "" + +#: ipaserver/plugins/internal.py:680 +msgid "Organizational Unit" +msgstr "" + +#: ipaserver/plugins/internal.py:681 +#, python-brace-format +msgid "${count} certificate(s) present" +msgstr "" + +#: ipaserver/plugins/internal.py:682 +msgid "Privilege Withdrawn" +msgstr "" + +#: ipaserver/plugins/internal.py:683 +msgid "Reason for Revocation" +msgstr "" + +#: ipaserver/plugins/internal.py:685 +msgid "Remove certificate hold" +msgstr "" + +#: ipaserver/plugins/internal.py:686 +msgid "Do you want to remove the certificate hold?" +msgstr "" + +#: ipaserver/plugins/internal.py:687 +msgid "Remove from CRL" +msgstr "" + +#: ipaserver/plugins/internal.py:688 +#, python-brace-format msgid "" -"Search for %(searched_object)s without these %(relationship)s " -"%(ldap_object)s." +"
  1. Create a certificate database or use an existing one. To create a " +"new database:
    # certutil -N -d <database path>
    2. " +"
  2. Create a CSR with subject CN=<${cn_name}>,O=<realm>, for example:
    # certutil -R -d <database path> -a -g " +"<key size> -s 'CN=${cn},O=${realm}'${san}
  3. Copy and " +"paste the CSR (from -----BEGIN NEW CERTIFICATE REQUEST----- to " +"-----END NEW CERTIFICATE REQUEST-----) into the text area below:
" msgstr "" -#: ipaserver/plugins/baseldap.py:2434 -#, python-format -msgid "added attribute value to entry %(value)s" +#: ipaserver/plugins/internal.py:689 +#, python-brace-format +msgid " -8 '${cn}'" msgstr "" -#: ipaserver/plugins/baseldap.py:2443 -#, python-format -msgid "'%(attr)s' already contains one or more values" +#: ipaserver/plugins/internal.py:690 +msgid "Certificate requested" msgstr "" -#: ipaserver/plugins/baseldap.py:2450 -#, python-format -msgid "removed attribute values from entry %(value)s" +#: ipaserver/plugins/internal.py:692 +msgid "Revoke certificate" msgstr "" -#: ipaserver/plugins/baseldap.py:2459 -msgid "one or more values to remove" -msgstr "" - -#: ipaserver/plugins/baseuser.py:57 +#: ipaserver/plugins/internal.py:693 msgid "" -"\n" -"Baseuser\n" -"\n" -"This contains common definitions for user/stageuser\n" +"Do you want to revoke this certificate? Select a reason from the pull-down " +"list." msgstr "" -#: ipaserver/plugins/baseuser.py:69 ipaclient/remote_plugins/2_114/user.py:332 -msgid "Kerberos keys available" +#: ipaserver/plugins/internal.py:694 +msgid "Certificate Revoked" msgstr "" -#: ipaserver/plugins/baseuser.py:88 -msgid "must be TRUE or FALSE" +#: ipaserver/plugins/internal.py:695 +msgid "REVOKED" msgstr "" -#: ipaserver/plugins/baseuser.py:145 -msgid "" -"Object class ipaNTUserAttrs is missing, user entry cannot have SMB " -"attributes." +#: ipaserver/plugins/internal.py:698 +msgid "SHA1 Fingerprint" msgstr "" -#: ipaserver/plugins/baseuser.py:205 ipaserver/plugins/idviews.py:944 -msgid "User login" +#: ipaserver/plugins/internal.py:699 +msgid "SHA256 Fingerprint" msgstr "" -#: ipaserver/plugins/baseuser.py:212 ipaclient/remote_plugins/2_114/user.py:75 -msgid "First name" +#: ipaserver/plugins/internal.py:700 ipaserver/plugins/internal.py:1024 +#: ipaserver/plugins/internal.py:1326 ipaserver/plugins/internal.py:1902 +#: ipaserver/plugins/cert.py:1271 +msgid "Status" msgstr "" -#: ipaserver/plugins/baseuser.py:216 ipaclient/remote_plugins/2_114/user.py:79 -msgid "Last name" +#: ipaserver/plugins/internal.py:701 +msgid "Superseded" msgstr "" -#: ipaserver/plugins/baseuser.py:219 ipaserver/plugins/schema.py:158 -msgid "Full name" +#: ipaserver/plugins/internal.py:702 +msgid "Unspecified" msgstr "" -#: ipaserver/plugins/baseuser.py:224 ipaclient/remote_plugins/2_114/user.py:88 -msgid "Display name" +#: ipaserver/plugins/internal.py:703 +msgid "Valid Certificate Present" msgstr "" -#: ipaserver/plugins/baseuser.py:229 ipaclient/remote_plugins/2_114/user.py:93 -msgid "Initials" +#: ipaserver/plugins/internal.py:704 +msgid "Valid from" msgstr "" -#: ipaserver/plugins/baseuser.py:235 ipaserver/plugins/idviews.py:963 -msgid "Home directory" +#: ipaserver/plugins/internal.py:705 +msgid "Valid to" msgstr "" -#: ipaserver/plugins/baseuser.py:238 ipaserver/plugins/idviews.py:954 -msgid "GECOS" +#: ipaserver/plugins/internal.py:706 +msgid "Validity" msgstr "" -#: ipaserver/plugins/baseuser.py:244 ipaserver/plugins/idviews.py:967 -msgid "Login shell" +#: ipaserver/plugins/internal.py:707 +#, python-brace-format +msgid "Certificate for ${entity} ${primary_key}" msgstr "" -#: ipaserver/plugins/baseuser.py:265 ipaclient/remote_plugins/2_114/user.py:118 -msgid "Kerberos principal expiration" +#: ipaserver/plugins/internal.py:708 +msgid "View Certificate" msgstr "" -#: ipaserver/plugins/baseuser.py:269 -msgid "User password expiration" +#: ipaserver/plugins/internal.py:711 +msgid "Certificate Data" msgstr "" -#: ipaserver/plugins/baseuser.py:273 ipaclient/remote_plugins/2_114/user.py:124 -msgid "Email address" +#: ipaserver/plugins/internal.py:712 +msgid "Certificate For Match" msgstr "" -#: ipaserver/plugins/baseuser.py:278 ipaclient/remote_plugins/2_114/user.py:130 -msgid "Prompt to set the user password" +#: ipaserver/plugins/internal.py:713 +msgid "Certificate Mapping Match" msgstr "" -#: ipaserver/plugins/baseuser.py:284 ipaclient/remote_plugins/2_114/user.py:136 -msgid "Generate a random user password" -msgstr "" - -#: ipaserver/plugins/baseuser.py:294 ipaserver/plugins/idviews.py:949 -msgid "UID" -msgstr "" - -#: ipaserver/plugins/baseuser.py:295 ipaclient/remote_plugins/2_114/user.py:147 -msgid "User ID Number (system will assign one if not provided)" -msgstr "" - -#: ipaserver/plugins/baseuser.py:299 ipaserver/plugins/group.py:334 -#: ipaserver/plugins/idviews.py:957 ipaserver/plugins/idviews.py:1052 -msgid "GID" -msgstr "" - -#: ipaserver/plugins/baseuser.py:300 ipaserver/plugins/idviews.py:958 -#: ipaserver/plugins/idviews.py:1053 ipaclient/remote_plugins/2_114/user.py:153 -msgid "Group ID Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:305 ipaclient/remote_plugins/2_114/user.py:158 -msgid "Street address" -msgstr "" - -#: ipaserver/plugins/baseuser.py:309 ipaclient/remote_plugins/2_114/user.py:163 -msgid "City" -msgstr "" - -#: ipaserver/plugins/baseuser.py:313 ipaclient/remote_plugins/2_114/user.py:168 -msgid "State/Province" -msgstr "" - -#: ipaserver/plugins/baseuser.py:316 ipaclient/remote_plugins/2_114/user.py:173 -msgid "ZIP" -msgstr "" - -#: ipaserver/plugins/baseuser.py:320 ipaclient/remote_plugins/2_114/user.py:179 -msgid "Telephone Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:323 ipaclient/remote_plugins/2_114/user.py:185 -msgid "Mobile Telephone Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:326 ipaclient/remote_plugins/2_114/user.py:191 -msgid "Pager Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:330 ipaclient/remote_plugins/2_114/user.py:197 -msgid "Fax Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:334 ipaclient/remote_plugins/2_114/user.py:202 -msgid "Org. Unit" -msgstr "" - -#: ipaserver/plugins/baseuser.py:337 ipaclient/remote_plugins/2_114/user.py:207 -msgid "Job Title" -msgstr "" - -#: ipaserver/plugins/baseuser.py:341 ipaserver/plugins/otptoken.py:183 -msgid "Manager" -msgstr "" - -#: ipaserver/plugins/baseuser.py:344 ipaclient/remote_plugins/2_114/user.py:218 -msgid "Car License" -msgstr "" - -#: ipaserver/plugins/baseuser.py:359 ipaclient/remote_plugins/2_114/user.py:235 -msgid "User authentication types" -msgstr "" - -#: ipaserver/plugins/baseuser.py:360 ipaclient/remote_plugins/2_114/user.py:236 -msgid "Types of supported user authentication" -msgstr "" - -#: ipaserver/plugins/baseuser.py:366 ipaclient/remote_plugins/2_114/user.py:243 -msgid "" -"User category (semantics placed on this attribute are for local " -"interpretation)" -msgstr "" - -#: ipaserver/plugins/baseuser.py:371 ipaclient/remote_plugins/2_114/user.py:248 -msgid "RADIUS proxy configuration" -msgstr "" - -#: ipaserver/plugins/baseuser.py:375 ipaclient/remote_plugins/2_114/user.py:253 -msgid "RADIUS proxy username" -msgstr "" - -#: ipaserver/plugins/baseuser.py:378 ipaclient/remote_plugins/2_114/user.py:259 -msgid "Department Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:381 ipaclient/remote_plugins/2_114/user.py:264 -msgid "Employee Number" -msgstr "" - -#: ipaserver/plugins/baseuser.py:384 ipaclient/remote_plugins/2_114/user.py:269 -msgid "Employee Type" -msgstr "" - -#: ipaserver/plugins/baseuser.py:387 ipaclient/remote_plugins/2_114/user.py:274 -msgid "Preferred Language" -msgstr "" - -#: ipaserver/plugins/baseuser.py:399 ipaserver/plugins/baseuser.py:839 -#: ipaserver/plugins/certmap.py:606 ipaserver/plugins/idviews.py:981 -msgid "Base-64 encoded user certificate" -msgstr "" - -#: ipaserver/plugins/baseuser.py:404 ipaserver/plugins/baseuser.py:405 -#: ipaserver/plugins/internal.py:717 -msgid "Certificate mapping data" -msgstr "" - -#: ipaserver/plugins/baseuser.py:410 -msgid "SMB logon script path" -msgstr "" - -#: ipaserver/plugins/baseuser.py:415 -msgid "SMB profile path" -msgstr "" - -#: ipaserver/plugins/baseuser.py:420 -msgid "SMB Home Directory" -msgstr "" - -#: ipaserver/plugins/baseuser.py:425 -msgid "SMB Home Directory Drive" -msgstr "" - -#: ipaserver/plugins/baseuser.py:449 ipaserver/plugins/baseuser.py:453 -#, python-format -msgid "invalid e-mail format: %(email)s" -msgstr "" - -#: ipaserver/plugins/baseuser.py:480 -#, python-format -msgid "manager %(manager)s not found" -msgstr "" - -#: ipaserver/plugins/baseuser.py:825 -msgid "Issuer of the certificate" -msgstr "" - -#: ipaserver/plugins/baseuser.py:832 -msgid "Subject of the certificate" -msgstr "" - -#: ipaserver/plugins/baseuser.py:877 -msgid "cannot have an empty subject" -msgstr "" - -#: ipaserver/plugins/baseuser.py:917 -msgid "cannot specify both subject/issuer and certificate" -msgstr "" - -#: ipaserver/plugins/baseuser.py:921 -msgid "cannot specify both subject/issuer and ipacertmapdata" -msgstr "" - -#: ipaserver/plugins/baseuser.py:946 -#, python-format -msgid "Added certificate mappings to user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/baseuser.py:965 -#, python-format -msgid "Removed certificate mappings from user \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:50 -msgid "" -"\n" -"Certificate Identity Mapping\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:52 -msgid "" -"\n" -"Manage Certificate Identity Mapping configuration and rules.\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:54 -msgid "" -"\n" -"IPA supports the use of certificates for authentication. Certificates can\n" -"either be stored in the user entry (full certificate in the usercertificate\n" -"attribute), or simply linked to the user entry through a mapping.\n" -"This code enables the management of the rules allowing to link a\n" -"certificate to a user entry.\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:62 -msgid "" -"\n" -" Display the Certificate Identity Mapping global configuration:\n" -" ipa certmapconfig-show\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:65 -msgid "" -"\n" -" Modify Certificate Identity Mapping global configuration:\n" -" ipa certmapconfig-mod --promptusername=TRUE\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:68 -msgid "" -"\n" -" Create a new Certificate Identity Mapping Rule:\n" -" ipa certmaprule-add rule1 --desc=\"Link certificate with subject and " -"issuer\"\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:71 -msgid "" -"\n" -" Modify a Certificate Identity Mapping Rule:\n" -" ipa certmaprule-mod rule1 --maprule=\"\"\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:74 -msgid "" -"\n" -" Disable a Certificate Identity Mapping Rule:\n" -" ipa certmaprule-disable rule1\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:77 -msgid "" -"\n" -" Enable a Certificate Identity Mapping Rule:\n" -" ipa certmaprule-enable rule1\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:80 -msgid "" -"\n" -" Display information about a Certificate Identity Mapping Rule:\n" -" ipa certmaprule-show rule1\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:83 -msgid "" -"\n" -" Find all Certificate Identity Mapping Rules with the specified domain:\n" -" ipa certmaprule-find --domain example.com\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:86 -msgid "" -"\n" -" Delete a Certificate Identity Mapping Rule:\n" -" ipa certmaprule-del rule1\n" -msgstr "" - -#: ipaserver/plugins/certmap.py:141 ipaserver/plugins/certmap.py:148 -#: ipaserver/plugins/certmap.py:175 ipaserver/plugins/trust.py:848 -msgid "domain" -msgstr "" - -#: ipaserver/plugins/certmap.py:142 -#, python-format -msgid "" -"The domain(s) \"%s\" cannot be used to apply altSecurityIdentities check." -msgstr "" - -#: ipaserver/plugins/certmap.py:149 -msgid "" -"The mapping rule with altSecurityIdentities should be applied to a trusted " -"Active Directory domain but no domain was associated with the rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:176 -#, python-format -msgid "The domain %s is neither IPA domain nor a trusteddomain." -msgstr "" - -#: ipaserver/plugins/certmap.py:186 -msgid "Certificate Identity Mapping configuration options" -msgstr "" - -#: ipaserver/plugins/certmap.py:191 ipaserver/plugins/certmap.py:192 -msgid "Certificate Identity Mapping Global Configuration" -msgstr "" - -#: ipaserver/plugins/certmap.py:198 -msgid "Prompt for the username" -msgstr "" - -#: ipaserver/plugins/certmap.py:199 -msgid "" -"Prompt for the username when multiple identities are mapped to a certificate" -msgstr "" - -#: ipaserver/plugins/certmap.py:229 -msgid "Modify Certificate Identity Mapping configuration." -msgstr "" - -#: ipaserver/plugins/certmap.py:234 -msgid "Show the current Certificate Identity Mapping configuration." -msgstr "" - -#: ipaserver/plugins/certmap.py:243 ipaserver/plugins/certmap.py:247 -msgid "Certificate Identity Mapping Rules" -msgstr "" - -#: ipaserver/plugins/certmap.py:244 ipaserver/plugins/certmap.py:246 -msgid "Certificate Identity Mapping Rule" -msgstr "" - -#: ipaserver/plugins/certmap.py:273 ipaserver/plugins/selinuxusermap.py:239 -#: ipaserver/plugins/hbacrule.py:207 ipaserver/plugins/sudorule.py:227 -msgid "Rule name" -msgstr "" - -#: ipaserver/plugins/certmap.py:274 -msgid "Certificate Identity Mapping Rule name" -msgstr "" - -#: ipaserver/plugins/certmap.py:280 -msgid "Certificate Identity Mapping Rule description" -msgstr "" - -#: ipaserver/plugins/certmap.py:285 -msgid "Mapping rule" -msgstr "" - -#: ipaserver/plugins/certmap.py:286 -msgid "Rule used to map the certificate with a user entry" -msgstr "" - -#: ipaserver/plugins/certmap.py:291 -msgid "Matching rule" -msgstr "" - -#: ipaserver/plugins/certmap.py:292 -msgid "Rule used to check if a certificate can be used for authentication" -msgstr "" - -#: ipaserver/plugins/certmap.py:298 ipaserver/plugins/trust.py:1580 -msgid "Domain name" -msgstr "" - -#: ipaserver/plugins/certmap.py:299 -msgid "Domain where the user entry will be searched" -msgstr "" - -#: ipaserver/plugins/certmap.py:304 ipaserver/plugins/pwpolicy.py:335 -msgid "Priority" -msgstr "" - -#: ipaserver/plugins/certmap.py:305 -msgid "Priority of the rule (higher number means lower priority" -msgstr "" - -#: ipaserver/plugins/certmap.py:310 ipaserver/plugins/selinuxusermap.py:268 -#: ipaserver/plugins/hbacrule.py:256 ipaserver/plugins/internal.py:1897 -#: ipaserver/plugins/sudorule.py:235 ipaserver/plugins/caacl.py:178 -msgid "Enabled" -msgstr "" - -#: ipaserver/plugins/certmap.py:356 -msgid "Create a new Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:358 -#, python-format -msgid "Added Certificate Identity Mapping Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:369 -msgid "Modify a Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:371 -#, python-format -msgid "Modified Certificate Identity Mapping Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:392 -msgid "Search for Certificate Identity Mapping Rules." -msgstr "" - -#: ipaserver/plugins/certmap.py:395 -#, python-format -msgid "%(count)d Certificate Identity Mapping Rule matched" -msgid_plural "%(count)d Certificate Identity Mapping Rules matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/certmap.py:402 -msgid "Display information about a Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:408 -msgid "Delete a Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:410 -#, python-format -msgid "Deleted Certificate Identity Mapping Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:415 -msgid "Enable a Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:417 -#, python-format -msgid "Enabled Certificate Identity Mapping Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:444 -msgid "Disable a Certificate Identity Mapping Rule." -msgstr "" - -#: ipaserver/plugins/certmap.py:446 -#, python-format -msgid "Disabled Certificate Identity Mapping Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certmap.py:500 -msgid "Failed to connect to sssd over SystemBus. See details in the error_log" -msgstr "" - -#: ipaserver/plugins/certmap.py:554 -msgid "Failed to find users over SystemBus. See details in the error_log" -msgstr "" - -#: ipaserver/plugins/certmap.py:566 ipaserver/plugins/internal.py:710 -#: ipaserver/plugins/internal.py:1509 ipaserver/plugins/realmdomains.py:115 +#: ipaserver/plugins/internal.py:714 ipaserver/plugins/internal.py:1513 +#: ipaserver/plugins/certmap.py:566 ipaserver/plugins/realmdomains.py:115 #: ipaserver/plugins/trust.py:1245 msgid "Domain" msgstr "" -#: ipaserver/plugins/certmap.py:571 -msgid "User logins" +#: ipaserver/plugins/internal.py:715 +msgid "Matched Users" msgstr "" -#: ipaserver/plugins/certmap.py:579 +#: ipaserver/plugins/internal.py:716 +msgid "User Login" +msgstr "" + +#: ipaserver/plugins/internal.py:719 +msgid "Add certificate identity mapping rule" +msgstr "" + +#: ipaserver/plugins/internal.py:720 +msgid "Add certificate mapping data" +msgstr "" + +#: ipaserver/plugins/internal.py:721 ipaserver/plugins/baseuser.py:404 +#: ipaserver/plugins/baseuser.py:405 +msgid "Certificate mapping data" +msgstr "" + +#: ipaserver/plugins/internal.py:723 +msgid "Configuration string" +msgstr "" + +#: ipaserver/plugins/internal.py:724 +#, python-brace-format +msgid "Do you want to remove certificate mapping data ${data}?" +msgstr "" + +#: ipaserver/plugins/internal.py:725 +msgid "Remove certificate mapping data" +msgstr "" + +#: ipaserver/plugins/internal.py:727 +msgid "Issuer and subject" +msgstr "" + +#: ipaserver/plugins/internal.py:728 +msgid "Remove certificate identity mapping rules" +msgstr "" + +#: ipaserver/plugins/internal.py:730 ipaserver/plugins/schema.py:153 +msgid "Version" +msgstr "" + +#: ipaserver/plugins/internal.py:733 +msgid "Group Options" +msgstr "" + +#: ipaserver/plugins/internal.py:734 +msgid "Search Options" +msgstr "" + +#: ipaserver/plugins/internal.py:735 +msgid "SELinux Options" +msgstr "" + +#: ipaserver/plugins/internal.py:736 +msgid "Server Options" +msgstr "" + +#: ipaserver/plugins/internal.py:737 +msgid "Service Options" +msgstr "" + +#: ipaserver/plugins/internal.py:738 +msgid "User Options" +msgstr "" + +#: ipaserver/plugins/internal.py:743 +msgid "Forward first" +msgstr "" + +#: ipaserver/plugins/internal.py:744 +msgid "Forwarding disabled" +msgstr "" + +#: ipaserver/plugins/internal.py:745 +msgid "Forward only" +msgstr "" + +#: ipaserver/plugins/internal.py:746 ipaserver/plugins/internal.py:1438 +#: ipaserver/plugins/internal.py:1544 +msgid "Options" +msgstr "" + +#: ipaserver/plugins/internal.py:747 +msgid "Update System DNS Records" +msgstr "" + +#: ipaserver/plugins/internal.py:748 +msgid "Do you want to update system DNS records?" +msgstr "" + +#: ipaserver/plugins/internal.py:749 +msgid "System DNS records updated" +msgstr "" + +#: ipaserver/plugins/internal.py:752 +msgid "Add DNS forward zone" +msgstr "" + +#: ipaserver/plugins/internal.py:753 +msgid "Remove DNS forward zones" +msgstr "" + +#: ipaserver/plugins/internal.py:756 +msgid "Add DNS resource record" +msgstr "" + +#: ipaserver/plugins/internal.py:757 ipaclient/plugins/vault.py:981 +msgid "Data" +msgstr "" + +#: ipaserver/plugins/internal.py:758 +msgid "DNS record was deleted because it contained no data." +msgstr "" + +#: ipaserver/plugins/internal.py:759 +msgid "Other Record Types" +msgstr "" + +#: ipaserver/plugins/internal.py:760 +msgid "Address not valid, can't redirect" +msgstr "" + +#: ipaserver/plugins/internal.py:761 +msgid "Create dns record" +msgstr "" + +#: ipaserver/plugins/internal.py:762 +msgid "Creating record." +msgstr "" + +#: ipaserver/plugins/internal.py:763 +msgid "Record creation failed." +msgstr "" + +#: ipaserver/plugins/internal.py:764 +msgid "Checking if record exists." +msgstr "" + +#: ipaserver/plugins/internal.py:765 +msgid "Record not found." +msgstr "" + +#: ipaserver/plugins/internal.py:766 +msgid "Redirection to PTR record" +msgstr "" + +#: ipaserver/plugins/internal.py:767 +#, python-brace-format +msgid "Zone found: ${zone}" +msgstr "" + +#: ipaserver/plugins/internal.py:768 +msgid "Target reverse zone not found." +msgstr "" + +#: ipaserver/plugins/internal.py:769 +msgid "Fetching DNS zones." +msgstr "" + +#: ipaserver/plugins/internal.py:770 +msgid "An error occurred while fetching dns zones." +msgstr "" + +#: ipaserver/plugins/internal.py:771 +msgid "You will be redirected to DNS Zone." +msgstr "" + +#: ipaserver/plugins/internal.py:772 +msgid "Remove DNS resource records" +msgstr "" + +#: ipaserver/plugins/internal.py:773 +msgid "Standard Record Types" +msgstr "" + +#: ipaserver/plugins/internal.py:774 +msgid "Records for DNS Zone" +msgstr "" + +#: ipaserver/plugins/internal.py:775 +msgid "Record Type" +msgstr "" + +#: ipaserver/plugins/internal.py:778 +msgid "Add DNS zone" +msgstr "" + +#: ipaserver/plugins/internal.py:780 +#, python-brace-format +msgid "Are you sure you want to add permission for DNS Zone ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:781 +msgid "DNS Zone Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:782 +msgid "Remove DNS zones" +msgstr "" + +#: ipaserver/plugins/internal.py:783 +msgid "Remove Permission" +msgstr "" + +#: ipaserver/plugins/internal.py:784 +#, python-brace-format +msgid "Are you sure you want to remove permission for DNS Zone ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:785 +msgid "Skip DNS check" +msgstr "" + +#: ipaserver/plugins/internal.py:786 +msgid "Skip overlap check" +msgstr "" + +#: ipaserver/plugins/internal.py:787 +msgid "Do you want to check if new authoritative nameserver address is in DNS" +msgstr "" + +#: ipaserver/plugins/internal.py:788 +msgid "Authoritative nameserver change" +msgstr "" + +#: ipaserver/plugins/internal.py:793 +msgid "Level" +msgstr "" + +#: ipaserver/plugins/internal.py:794 +msgid "Set Domain Level" +msgstr "" + +#: ipaserver/plugins/internal.py:797 +msgid "Add user group" +msgstr "" + +#: ipaserver/plugins/internal.py:799 +#, python-brace-format +msgid "Add user groups into user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:802 +#, python-brace-format +msgid "Add user group '${primary_key}' into user groups" +msgstr "" + +#: ipaserver/plugins/internal.py:805 +#, python-brace-format +msgid "Add user group '${primary_key}' into HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:808 +#, python-brace-format +msgid "Add user group '${primary_key}' into netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:811 +#, python-brace-format +msgid "Add user group '${primary_key}' into roles" +msgstr "" + +#: ipaserver/plugins/internal.py:814 +#, python-brace-format +msgid "Add user group '${primary_key}' into sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:817 +#, python-brace-format +msgid "Add services into user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:820 +#, python-brace-format +msgid "Add users into user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:823 +#, python-brace-format +msgid "Add groups as member managers for user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:827 +#, python-brace-format +msgid "Remove groups from member managers for user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:831 +#, python-brace-format +msgid "Add users as member managers for user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:835 +#, python-brace-format +msgid "Remove users from member managers for user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:838 +msgid "Group Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:839 ipaserver/plugins/internal.py:1154 +#: ipaserver/plugins/internal.py:1433 +msgid "External" +msgstr "" + +#: ipaserver/plugins/internal.py:840 ipaserver/plugins/internal.py:1366 +msgid "Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:841 +msgid "Group categories" +msgstr "" + +#: ipaserver/plugins/internal.py:842 +msgid "Change to external group" +msgstr "" + +#: ipaserver/plugins/internal.py:843 +msgid "Change to POSIX group" +msgstr "" + +#: ipaserver/plugins/internal.py:844 +msgid "Non-POSIX" +msgstr "" + +#: ipaserver/plugins/internal.py:845 +msgid "POSIX" +msgstr "" + +#: ipaserver/plugins/internal.py:846 +msgid "Remove user groups" +msgstr "" + +#: ipaserver/plugins/internal.py:848 +#, python-brace-format +msgid "Remove user group '${primary_key}' from user groups" +msgstr "" + +#: ipaserver/plugins/internal.py:851 +#, python-brace-format +msgid "Remove user group '${primary_key}' from netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:854 +#, python-brace-format +msgid "Remove user group '${primary_key}' from roles" +msgstr "" + +#: ipaserver/plugins/internal.py:857 +#, python-brace-format +msgid "Remove user group '${primary_key}' from HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:860 +#, python-brace-format +msgid "Remove user group '${primary_key}' from sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:863 +#, python-brace-format +msgid "Remove user groups from user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:866 +#, python-brace-format +msgid "Remove services from user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:869 +#, python-brace-format +msgid "Remove users from user group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:871 +msgid "Group Type" +msgstr "" + +#: ipaserver/plugins/internal.py:875 +msgid "Add HBAC rule" +msgstr "" + +#: ipaserver/plugins/internal.py:877 +#, python-brace-format +msgid "Add user groups into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:880 +#, python-brace-format +msgid "Add host groups into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:883 +#, python-brace-format +msgid "Add hosts into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:886 +#, python-brace-format +msgid "Add HBAC service groups into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:890 +#, python-brace-format +msgid "Add HBAC services into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:893 +#, python-brace-format +msgid "Add users into HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:898 +msgid "Accessing" +msgstr "" + +#: ipaserver/plugins/internal.py:900 +msgid "Remove HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:902 +#, python-brace-format +msgid "Remove user groups from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:905 +#, python-brace-format +msgid "Remove host groups from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:908 +#, python-brace-format +msgid "Remove hosts from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:911 +#, python-brace-format +msgid "Remove HBAC service groups from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:915 +#, python-brace-format +msgid "Remove HBAC services from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:918 +#, python-brace-format +msgid "Remove users from HBAC rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:920 +msgid "Via Service" +msgstr "" + +#: ipaserver/plugins/internal.py:924 ipaserver/plugins/internal.py:1482 +msgid "Who" +msgstr "" + +#: ipaserver/plugins/internal.py:927 +msgid "Add HBAC service" +msgstr "" + +#: ipaserver/plugins/internal.py:929 +#, python-brace-format +msgid "Add HBAC service '${primary_key}' into HBAC service groups" +msgstr "" + +#: ipaserver/plugins/internal.py:932 +msgid "Remove HBAC services" +msgstr "" + +#: ipaserver/plugins/internal.py:934 +#, python-brace-format +msgid "Remove HBAC service '${primary_key}' from HBAC service groups" +msgstr "" + +#: ipaserver/plugins/internal.py:939 +msgid "Add HBAC service group" +msgstr "" + +#: ipaserver/plugins/internal.py:941 +#, python-brace-format +msgid "Add HBAC services into HBAC service group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:944 +msgid "Remove HBAC service groups" +msgstr "" + +#: ipaserver/plugins/internal.py:946 +#, python-brace-format +msgid "Remove HBAC services from HBAC service group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:952 +msgid "Access Denied" +msgstr "" + +#: ipaserver/plugins/internal.py:953 +msgid "Access Granted" +msgstr "" + +#: ipaserver/plugins/internal.py:954 +msgid "Include Disabled" +msgstr "" + +#: ipaserver/plugins/internal.py:955 +msgid "Include Enabled" +msgstr "" + +#: ipaserver/plugins/internal.py:956 +msgid "HBAC Test" +msgstr "" + +#: ipaserver/plugins/internal.py:957 +msgid "Matched" +msgstr "" + +#: ipaserver/plugins/internal.py:958 +msgid "Missing values: " +msgstr "" + +#: ipaserver/plugins/internal.py:959 +msgid "New Test" +msgstr "" + +#: ipaserver/plugins/internal.py:960 +msgid "Rules" +msgstr "" + +#: ipaserver/plugins/internal.py:961 +msgid "Run Test" +msgstr "" + +#: ipaserver/plugins/internal.py:962 +#, python-brace-format +msgid "Specify external ${entity}" +msgstr "" + +#: ipaserver/plugins/internal.py:963 +msgid "Unmatched" +msgstr "" + +#: ipaserver/plugins/internal.py:966 +msgid "Add host" +msgstr "" + +#: ipaserver/plugins/internal.py:968 +#, python-brace-format +msgid "Add hosts managing host '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:971 +#, python-brace-format +msgid "Add host '${primary_key}' into host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:974 +#, python-brace-format +msgid "Add host '${primary_key}' into HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:977 +#, python-brace-format +msgid "Add host '${primary_key}' into netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:980 +#, python-brace-format +msgid "Add host '${primary_key}' into roles" +msgstr "" + +#: ipaserver/plugins/internal.py:983 +#, python-brace-format +msgid "Add host '${primary_key}' into sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:985 +msgid "Host Certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:986 ipaserver/plugins/internal.py:1315 +msgid "Host Name" +msgstr "" + +#: ipaserver/plugins/internal.py:987 ipaserver/plugins/internal.py:1313 +msgid "Delete Key, Unprovision" +msgstr "" + +#: ipaserver/plugins/internal.py:988 +msgid "Host Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:989 +msgid "Enrolled" +msgstr "" + +#: ipaserver/plugins/internal.py:990 +msgid "Enrollment" +msgstr "" + +#: ipaserver/plugins/internal.py:991 +msgid "Fully Qualified Host Name" +msgstr "" + +#: ipaserver/plugins/internal.py:992 +msgid "Generate OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:993 +msgid "Generated OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:994 +msgid "Kerberos Key" +msgstr "" + +#: ipaserver/plugins/internal.py:995 ipaserver/plugins/internal.py:1316 +msgid "Kerberos Key Not Present" +msgstr "" + +#: ipaserver/plugins/internal.py:996 +msgid "Kerberos Key Present, Host Provisioned" +msgstr "" + +#: ipaserver/plugins/internal.py:997 ipaserver/plugins/internal.py:1676 +msgid "One-Time-Password" +msgstr "" + +#: ipaserver/plugins/internal.py:998 +msgid "One-Time-Password Not Present" +msgstr "" + +#: ipaserver/plugins/internal.py:999 +msgid "One-Time-Password Present" +msgstr "" + +#: ipaserver/plugins/internal.py:1000 +msgid "Reset OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:1001 +msgid "Reset One-Time-Password" +msgstr "" + +#: ipaserver/plugins/internal.py:1002 +msgid "Set OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:1003 +msgid "OTP set" +msgstr "" + +#: ipaserver/plugins/internal.py:1004 +msgid "Set One-Time-Password" +msgstr "" + +#: ipaserver/plugins/internal.py:1005 +msgid "Remove hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1007 +#, python-brace-format +msgid "Remove hosts managing host '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1010 +#, python-brace-format +msgid "Remove host '${primary_key}' from host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1013 +#, python-brace-format +msgid "Remove host '${primary_key}' from netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1016 +#, python-brace-format +msgid "Remove host '${primary_key}' from roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1019 +#, python-brace-format +msgid "Remove host '${primary_key}' from HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1022 +#, python-brace-format +msgid "Remove host '${primary_key}' from sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1025 ipaserver/plugins/internal.py:1327 +msgid "Unprovision" +msgstr "" + +#: ipaserver/plugins/internal.py:1026 +msgid "Are you sure you want to unprovision this host?" +msgstr "" + +#: ipaserver/plugins/internal.py:1027 +msgid "Unprovisioning host" +msgstr "" + +#: ipaserver/plugins/internal.py:1028 +msgid "Host unprovisioned" +msgstr "" + +#: ipaserver/plugins/internal.py:1031 +msgid "Add host group" +msgstr "" + +#: ipaserver/plugins/internal.py:1033 +#, python-brace-format +msgid "Add hosts into host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1036 +#, python-brace-format +msgid "Add host groups into host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1039 +#, python-brace-format +msgid "Add host group '${primary_key}' into host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1042 +#, python-brace-format +msgid "Add host group '${primary_key}' into HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1045 +#, python-brace-format +msgid "Add host group '${primary_key}' into netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1048 +#, python-brace-format +msgid "Add host group '${primary_key}' into sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1051 +#, python-brace-format +msgid "Add groups as member managers for host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1055 +#, python-brace-format +msgid "Remove groups from member managers for host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1059 +#, python-brace-format +msgid "Add users as member managers for host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1063 +#, python-brace-format +msgid "Remove users from member managers for host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1067 +msgid "Host Group Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1068 +msgid "Remove host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1070 +#, python-brace-format +msgid "Remove host group '${primary_key}' from host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1073 +#, python-brace-format +msgid "Remove host group '${primary_key}' from netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1076 +#, python-brace-format +msgid "Remove host group '${primary_key}' from HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1079 +#, python-brace-format +msgid "Remove host group '${primary_key}' from sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1082 +#, python-brace-format +msgid "Remove hosts from host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1085 +#, python-brace-format +msgid "Remove host groups from host group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1089 +msgid "User to override" +msgstr "" + +#: ipaserver/plugins/internal.py:1090 +msgid "" +"Enter trusted or IPA user login. Note: search doesn't list users from " +"trusted domains." +msgstr "" + +#: ipaserver/plugins/internal.py:1091 +msgid "Enter trusted user login." +msgstr "" + +#: ipaserver/plugins/internal.py:1092 ipaserver/plugins/internal.py:1698 +msgid "Profile" +msgstr "" + +#: ipaserver/plugins/internal.py:1095 +msgid "Group to override" +msgstr "" + +#: ipaserver/plugins/internal.py:1096 +msgid "" +"Enter trusted or IPA group name. Note: search doesn't list groups from " +"trusted domains." +msgstr "" + +#: ipaserver/plugins/internal.py:1097 +msgid "Enter trusted group name." +msgstr "" + +#: ipaserver/plugins/internal.py:1100 +msgid "Add ID view" +msgstr "" + +#: ipaserver/plugins/internal.py:1101 +msgid "Add group ID override" +msgstr "" + +#: ipaserver/plugins/internal.py:1102 +msgid "Add user ID override" +msgstr "" + +#: ipaserver/plugins/internal.py:1103 +#, python-brace-format +msgid "${primary_key} applies to:" +msgstr "" + +#: ipaserver/plugins/internal.py:1104 ipaserver/plugins/internal.py:1105 +msgid "Applied to hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1106 +msgid "Apply to host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1108 +#, python-brace-format +msgid "Apply ID view '${primary_key}' on hosts of host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1110 +msgid "Apply to hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1112 +#, python-brace-format +msgid "Apply ID view '${primary_key}' on hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1114 ipaserver/plugins/host.py:580 +msgid "Assigned ID View" +msgstr "" + +#: ipaserver/plugins/internal.py:1115 +#, python-brace-format +msgid "${primary_key} overrides:" +msgstr "" + +#: ipaserver/plugins/internal.py:1116 +msgid "Remove ID views" +msgstr "" + +#: ipaserver/plugins/internal.py:1117 +msgid "Remove user ID overrides" +msgstr "" + +#: ipaserver/plugins/internal.py:1118 +msgid "Remove group ID overrides" +msgstr "" + +#: ipaserver/plugins/internal.py:1119 +msgid "Un-apply from host groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1120 +msgid "Un-apply ID Views from hosts of hostgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1121 +msgid "Un-apply" +msgstr "" + +#: ipaserver/plugins/internal.py:1122 +msgid "Un-apply from hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1123 +msgid "Un-apply ID Views from hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1124 +msgid "Are you sure you want to un-apply ID view from selected entries?" +msgstr "" + +#: ipaserver/plugins/internal.py:1126 +#, python-brace-format +msgid "Un-apply ID view '${primary_key}' from hosts" +msgstr "" + +#: ipaserver/plugins/internal.py:1130 ipaserver/plugins/krbtpolicy.py:128 +#: ipaserver/plugins/krbtpolicy.py:129 +msgid "Kerberos Ticket Policy" +msgstr "" + +#: ipaserver/plugins/internal.py:1133 +msgid "Add netgroup" +msgstr "" + +#: ipaserver/plugins/internal.py:1135 +#, python-brace-format +msgid "Add netgroup '${primary_key}' into netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1138 +#, python-brace-format +msgid "Add netgroups into netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1141 +#, python-brace-format +msgid "Add user groups into netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1144 +#, python-brace-format +msgid "Add hosts into netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1147 +#, python-brace-format +msgid "Add host groups into netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1150 +#, python-brace-format +msgid "Add users into netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1155 ipaserver/plugins/internal.py:1276 +#: ipaserver/plugins/host.py:451 +msgid "Host" +msgstr "" + +#: ipaserver/plugins/internal.py:1158 +msgid "Netgroup Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1160 +msgid "Remove netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1162 +#, python-brace-format +msgid "Remove netgroup '${primary_key}' from netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1165 +#, python-brace-format +msgid "Remove user groups from netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1168 +#, python-brace-format +msgid "Remove hosts from netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1171 +#, python-brace-format +msgid "Remove host groups from netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1174 +#, python-brace-format +msgid "Remove netgroups from netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1177 +#, python-brace-format +msgid "Remove users from netgroup '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1186 +msgid "Add OTP token" +msgstr "" + +#: ipaserver/plugins/internal.py:1188 +#, python-brace-format +msgid "Add users managing OTP token '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1190 +#, python-brace-format +msgid "" +"You can use FreeOTP as a software " +"OTP token application." +msgstr "" + +#: ipaserver/plugins/internal.py:1191 +msgid "Configure your token" +msgstr "" + +#: ipaserver/plugins/internal.py:1192 +msgid "" +"Configure your token by scanning the QR code below. Click on the QR code if " +"you see this on the device you want to configure." +msgstr "" + +#: ipaserver/plugins/internal.py:1193 +msgid "OTP Token Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1194 +msgid "Disable token" +msgstr "" + +#: ipaserver/plugins/internal.py:1195 +msgid "Enable token" +msgstr "" + +#: ipaserver/plugins/internal.py:1196 +msgid "Remove OTP tokens" +msgstr "" + +#: ipaserver/plugins/internal.py:1198 +#, python-brace-format +msgid "Remove users managing OTP token '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1200 +msgid "Show QR code" +msgstr "" + +#: ipaserver/plugins/internal.py:1201 +msgid "Show configuration uri" +msgstr "" + +#: ipaserver/plugins/internal.py:1202 +msgid "Counter-based (HOTP)" +msgstr "" + +#: ipaserver/plugins/internal.py:1203 +msgid "Time-based (TOTP)" +msgstr "" + +#: ipaserver/plugins/internal.py:1206 +msgid "Add Custom Attribute" +msgstr "" + +#: ipaserver/plugins/internal.py:1209 +msgid "Permission settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1210 +msgid "Attribute breakdown" +msgstr "" + +#: ipaserver/plugins/internal.py:1211 ipaserver/plugins/dns.py:1035 +#: ipaserver/plugins/dns.py:1366 ipaclient/remote_plugins/2_114/dns.py:514 +msgid "Target" +msgstr "" + +#: ipaserver/plugins/internal.py:1214 +msgid "Privilege Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1217 +msgid "Public key:" +msgstr "" + +#: ipaserver/plugins/internal.py:1218 +msgid "Set public key" +msgstr "" + +#: ipaserver/plugins/internal.py:1219 ipaserver/plugins/internal.py:1337 +msgid "Show/Set key" +msgstr "" + +#: ipaserver/plugins/internal.py:1220 ipaserver/plugins/internal.py:1338 +msgid "Modified: key not set" +msgstr "" + +#: ipaserver/plugins/internal.py:1221 ipaserver/plugins/internal.py:1339 +msgid "Modified" +msgstr "" + +#: ipaserver/plugins/internal.py:1222 ipaserver/plugins/internal.py:1340 +msgid "New: key not set" +msgstr "" + +#: ipaserver/plugins/internal.py:1223 ipaserver/plugins/internal.py:1341 +msgid "New: key set" +msgstr "" + +#: ipaserver/plugins/internal.py:1226 +msgid "Add password policy" +msgstr "" + +#: ipaserver/plugins/internal.py:1228 +msgid "Remove password policies" +msgstr "" + +#: ipaserver/plugins/internal.py:1231 +msgid "Add ID range" +msgstr "" + +#: ipaserver/plugins/internal.py:1232 +msgid "Range Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1233 +msgid "Base ID" +msgstr "" + +#: ipaserver/plugins/internal.py:1234 +msgid "Primary RID base" +msgstr "" + +#: ipaserver/plugins/internal.py:1235 +msgid "Range size" +msgstr "" + +#: ipaserver/plugins/internal.py:1236 +msgid "Domain SID" +msgstr "" + +#: ipaserver/plugins/internal.py:1237 +msgid "Secondary RID base" +msgstr "" + +#: ipaserver/plugins/internal.py:1238 +msgid "Remove ID ranges" +msgstr "" + +#: ipaserver/plugins/internal.py:1239 ipaserver/plugins/idrange.py:244 +#: ipaserver/plugins/trust.py:710 ipaclient/remote_plugins/2_114/trust.py:316 +msgid "Range type" +msgstr "" + +#: ipaserver/plugins/internal.py:1240 ipaserver/dcerpc_common.py:37 +msgid "Active Directory domain" +msgstr "" + +#: ipaserver/plugins/internal.py:1241 +msgid "Active Directory domain with POSIX attributes" +msgstr "" + +#: ipaserver/plugins/internal.py:1242 +msgid "Detect" +msgstr "" + +#: ipaserver/plugins/internal.py:1243 +msgid "Local domain" +msgstr "" + +#: ipaserver/plugins/internal.py:1244 +msgid "IPA trust" +msgstr "" + +#: ipaserver/plugins/internal.py:1245 +msgid "Active Directory winsync" +msgstr "" + +#: ipaserver/plugins/internal.py:1248 +msgid "Add RADIUS server" +msgstr "" + +#: ipaserver/plugins/internal.py:1249 +msgid "RADIUS Proxy Server Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1250 +msgid "Remove RADIUS servers" +msgstr "" + +#: ipaserver/plugins/internal.py:1253 ipaserver/plugins/realmdomains.py:107 +#: ipaserver/plugins/realmdomains.py:108 +msgid "Realm Domains" +msgstr "" + +#: ipaserver/plugins/internal.py:1254 +msgid "Check DNS" +msgstr "" + +#: ipaserver/plugins/internal.py:1255 +msgid "Do you also want to perform DNS check?" +msgstr "" + +#: ipaserver/plugins/internal.py:1256 +msgid "Force Update" +msgstr "" + +#: ipaserver/plugins/internal.py:1261 +msgid "Add SELinux user map" +msgstr "" + +#: ipaserver/plugins/internal.py:1263 +#, python-brace-format +msgid "Add user groups into SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1266 +#, python-brace-format +msgid "Add host groups into SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1269 +#, python-brace-format +msgid "Add hosts into SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1272 +#, python-brace-format +msgid "Add users into SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1277 +msgid "Remove selinux user maps" +msgstr "" + +#: ipaserver/plugins/internal.py:1279 +#, python-brace-format +msgid "Remove user groups from SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1282 +#, python-brace-format +msgid "Remove host groups from SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1285 +#, python-brace-format +msgid "Remove hosts from SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1288 +#, python-brace-format +msgid "Remove users from SELinux user map '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1295 +msgid "Server Roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1296 +msgid "Server Role" +msgstr "" + +#: ipaserver/plugins/internal.py:1299 +msgid "Warning: Consider service replication" +msgstr "" + +#: ipaserver/plugins/internal.py:1300 +msgid "" +"It is strongly recommended to keep the following services installed on more " +"than one server:" +msgstr "" + +#: ipaserver/plugins/internal.py:1301 +msgid "Delete Server" +msgstr "" + +#: ipaserver/plugins/internal.py:1302 +msgid "" +"Deleting a server removes it permanently from the topology. Note that this " +"is a non-reversible action." +msgstr "" + +#: ipaserver/plugins/internal.py:1305 +msgid "Add service" +msgstr "" + +#: ipaserver/plugins/internal.py:1307 +#, python-brace-format +msgid "Add hosts managing service '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1310 +#, python-brace-format +msgid "Add service '${primary_key}' into roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1312 +msgid "Service Certificate" +msgstr "" + +#: ipaserver/plugins/internal.py:1314 +msgid "Service Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1317 +msgid "Provisioning" +msgstr "" + +#: ipaserver/plugins/internal.py:1318 +msgid "Remove services" +msgstr "" + +#: ipaserver/plugins/internal.py:1320 +#, python-brace-format +msgid "Remove service '${primary_key}' from roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1323 +#, python-brace-format +msgid "Remove hosts managing service '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1328 +msgid "Are you sure you want to unprovision this service?" +msgstr "" + +#: ipaserver/plugins/internal.py:1329 +msgid "Unprovisioning service" +msgstr "" + +#: ipaserver/plugins/internal.py:1330 +msgid "Service unprovisioned" +msgstr "" + +#: ipaserver/plugins/internal.py:1331 +msgid "Kerberos Key Present, Service Provisioned" +msgstr "" + +#: ipaserver/plugins/internal.py:1334 +msgid "SSH public keys" +msgstr "" + +#: ipaserver/plugins/internal.py:1335 +msgid "SSH public key:" +msgstr "" + +#: ipaserver/plugins/internal.py:1336 +msgid "Set SSH key" +msgstr "" + +#: ipaserver/plugins/internal.py:1344 +msgid "Are you sure you want to activate selected users?" +msgstr "" + +#: ipaserver/plugins/internal.py:1345 +#, python-brace-format +msgid "Are you sure you want to activate ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:1346 +#, python-brace-format +msgid "${count} user(s) activated" +msgstr "" + +#: ipaserver/plugins/internal.py:1347 +msgid "Add stage user" +msgstr "" + +#: ipaserver/plugins/internal.py:1348 +msgid "Stage users" +msgstr "" + +#: ipaserver/plugins/internal.py:1349 +msgid "Preserved users" +msgstr "" + +#: ipaserver/plugins/internal.py:1350 +msgid "Remove preserved users" +msgstr "" + +#: ipaserver/plugins/internal.py:1351 +msgid "Remove stage users" +msgstr "" + +#: ipaserver/plugins/internal.py:1352 +msgid "Are you sure you want to stage selected users?" +msgstr "" + +#: ipaserver/plugins/internal.py:1353 +#, python-brace-format +msgid "${count} users(s) staged" +msgstr "" + +#: ipaserver/plugins/internal.py:1354 +#, python-brace-format +msgid "Are you sure you want to stage ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:1355 +msgid "Are you sure you want to restore selected users?" +msgstr "" + +#: ipaserver/plugins/internal.py:1356 +#, python-brace-format +msgid "Are you sure you want to restore ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:1357 +#, python-brace-format +msgid "${count} user(s) restored" +msgstr "" + +#: ipaserver/plugins/internal.py:1358 +msgid "User categories" +msgstr "" + +#: ipaserver/plugins/internal.py:1361 +msgid "Add sudo command" +msgstr "" + +#: ipaserver/plugins/internal.py:1363 +#, python-brace-format +msgid "Add sudo command '${primary_key}' into sudo command groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1367 +msgid "Remove sudo commands" +msgstr "" + +#: ipaserver/plugins/internal.py:1369 +#, python-brace-format +msgid "Remove sudo command '${primary_key}' from sudo command groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1374 +msgid "Add sudo command group" +msgstr "" + +#: ipaserver/plugins/internal.py:1376 +#, python-brace-format +msgid "Add sudo commands into sudo command group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1379 ipaserver/plugins/sudocmdgroup.py:134 +msgid "Commands" +msgstr "" + +#: ipaserver/plugins/internal.py:1380 +msgid "Remove sudo command groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1382 +#, python-brace-format +msgid "Remove sudo commands from sudo command group '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1387 +msgid "Add sudo rule" +msgstr "" + +#: ipaserver/plugins/internal.py:1388 +msgid "Add sudo option" +msgstr "" + +#: ipaserver/plugins/internal.py:1390 +#, python-brace-format +msgid "Add allow sudo commands into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1394 +#, python-brace-format +msgid "Add allow sudo command groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1398 +#, python-brace-format +msgid "Add deny sudo commands into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1402 +#, python-brace-format +msgid "Add deny sudo command groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1406 +#, python-brace-format +msgid "Add user groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1409 +#, python-brace-format +msgid "Add host groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1412 +#, python-brace-format +msgid "Add hosts into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1415 +#, python-brace-format +msgid "Add RunAs users into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1418 +#, python-brace-format +msgid "Add RunAs user groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1421 +#, python-brace-format +msgid "Add RunAs groups into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1424 +#, python-brace-format +msgid "Add users into sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1426 +msgid "Allow" +msgstr "" + +#: ipaserver/plugins/internal.py:1427 +msgid "Any Command" +msgstr "" + +#: ipaserver/plugins/internal.py:1428 +msgid "Any Group" +msgstr "" + +#: ipaserver/plugins/internal.py:1431 +msgid "Run Commands" +msgstr "" + +#: ipaserver/plugins/internal.py:1432 +msgid "Deny" +msgstr "" + +#: ipaserver/plugins/internal.py:1434 +msgid "Access this host" +msgstr "" + +#: ipaserver/plugins/internal.py:1436 +msgid "Option added" +msgstr "" + +#: ipaserver/plugins/internal.py:1437 +#, python-brace-format +msgid "${count} option(s) removed" +msgstr "" + +#: ipaserver/plugins/internal.py:1439 +msgid "Remove sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1441 +#, python-brace-format +msgid "Remove allow sudo commands from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1445 +#, python-brace-format +msgid "Remove allow sudo command groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1449 +#, python-brace-format +msgid "Remove deny sudo commands from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1453 +#, python-brace-format +msgid "Remove deny sudo command groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1457 +#, python-brace-format +msgid "Remove user groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1460 +#, python-brace-format +msgid "Remove host groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1463 +#, python-brace-format +msgid "Remove hosts from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1466 +#, python-brace-format +msgid "Remove RunAs users from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1469 +#, python-brace-format +msgid "Remove RunAs user groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1472 +#, python-brace-format +msgid "Remove RunAs groups from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1475 +#, python-brace-format +msgid "Remove users from sudo rule '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1477 +msgid "As Whom" +msgstr "" + +#: ipaserver/plugins/internal.py:1478 +msgid "Specified Commands and Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1479 +msgid "Specified Groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1485 +msgid "Remove sudo options" +msgstr "" + +#: ipaserver/plugins/internal.py:1488 +msgid "Autogenerated" +msgstr "" + +#: ipaserver/plugins/internal.py:1489 +msgid "Segment details" +msgstr "" + +#: ipaserver/plugins/internal.py:1490 +msgid "Replication configuration" +msgstr "" + +#: ipaserver/plugins/internal.py:1491 +#, python-brace-format +msgid "Managed topology requires minimal domain level ${domainlevel}" +msgstr "" + +#: ipaserver/plugins/internal.py:1494 +msgid "Add IPA location" +msgstr "" + +#: ipaserver/plugins/internal.py:1496 +#, python-brace-format +msgid "Add IPA server into IPA location '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1498 +msgid "Remove IPA locations" +msgstr "" + +#: ipaserver/plugins/internal.py:1500 +#, python-brace-format +msgid "Remove IPA servers from IPA location '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1504 +msgid "Add topology segment" +msgstr "" + +#: ipaserver/plugins/internal.py:1505 +msgid "Remove topology segments" +msgstr "" + +#: ipaserver/plugins/internal.py:1508 +msgid "Account" +msgstr "" + +#: ipaserver/plugins/internal.py:1509 +msgid "Add trust" +msgstr "" + +#: ipaserver/plugins/internal.py:1510 +msgid "Administrative account" +msgstr "" + +#: ipaserver/plugins/internal.py:1511 +msgid "SID blacklists" +msgstr "" + +#: ipaserver/plugins/internal.py:1512 +msgid "Trust Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1514 +msgid "Establish using" +msgstr "" + +#: ipaserver/plugins/internal.py:1515 +msgid "Fetch domains" +msgstr "" + +#: ipaserver/plugins/internal.py:1516 ipaserver/plugins/trust.py:541 +#: ipaserver/plugins/trust.py:1585 ipaclient/remote_plugins/2_114/trust.py:115 +msgid "Domain NetBIOS name" +msgstr "" + +#: ipaserver/plugins/internal.py:1517 ipaserver/plugins/trust.py:545 +#: ipaserver/plugins/trust.py:1588 ipaclient/remote_plugins/2_114/trust.py:119 +msgid "Domain Security Identifier" +msgstr "" + +#: ipaserver/plugins/internal.py:1518 +msgid "Pre-shared password" +msgstr "" + +#: ipaserver/plugins/internal.py:1519 +msgid "Remove trusts" +msgstr "" + +#: ipaserver/plugins/internal.py:1520 +msgid "Remove domains" +msgstr "" + +#: ipaserver/plugins/internal.py:1521 ipaserver/plugins/trust.py:556 +msgid "Trust direction" +msgstr "" + +#: ipaserver/plugins/internal.py:1522 ipaserver/plugins/trust.py:564 +msgid "Trust status" +msgstr "" + +#: ipaserver/plugins/internal.py:1523 ipaserver/plugins/trust.py:560 +msgid "Trust type" +msgstr "" + +#: ipaserver/plugins/internal.py:1524 +msgid "Alternative UPN suffixes" +msgstr "" + +#: ipaserver/plugins/internal.py:1528 +msgid "User attributes for SMB services" +msgstr "" + +#: ipaserver/plugins/internal.py:1531 +msgid "Path to a script executed on a Windows system at logon" +msgstr "" + +#: ipaserver/plugins/internal.py:1534 +msgid "Path to a user profile, in UNC format \\\\server\\share\\" +msgstr "" + +#: ipaserver/plugins/internal.py:1537 +msgid "Path to a user home directory, in UNC format" +msgstr "" + +#: ipaserver/plugins/internal.py:1540 +msgid "Drive to mount a home directory" +msgstr "" + +#: ipaserver/plugins/internal.py:1547 +msgid "Account Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1548 +msgid "Account Status" +msgstr "" + +#: ipaserver/plugins/internal.py:1549 +msgid "Active users" +msgstr "" + +#: ipaserver/plugins/internal.py:1550 +msgid "Add user" +msgstr "" + +#: ipaserver/plugins/internal.py:1552 +#, python-brace-format +msgid "Add user '${primary_key}' into user groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1555 +#, python-brace-format +msgid "Add user '${primary_key}' into HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1558 +#, python-brace-format +msgid "Add user '${primary_key}' into netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1561 +#, python-brace-format +msgid "Add user '${primary_key}' into roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1564 +#, python-brace-format +msgid "Add user '${primary_key}' into sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1566 +msgid "Contact Settings" +msgstr "" + +#: ipaserver/plugins/internal.py:1567 +msgid "Delete mode" +msgstr "" + +#: ipaserver/plugins/internal.py:1568 +msgid "Employee Information" +msgstr "" + +#: ipaserver/plugins/internal.py:1569 +msgid "Error changing account status" +msgstr "" + +#: ipaserver/plugins/internal.py:1570 +msgid "Password expiration" +msgstr "" + +#: ipaserver/plugins/internal.py:1571 +msgid "Mailing Address" +msgstr "" + +#: ipaserver/plugins/internal.py:1572 +msgid "Misc. Information" +msgstr "" + +#: ipaserver/plugins/internal.py:1573 +msgid "delete" +msgstr "" + +#: ipaserver/plugins/internal.py:1574 +msgid "preserve" +msgstr "" + +#: ipaserver/plugins/internal.py:1575 +msgid "No private group" +msgstr "" + +#: ipaserver/plugins/internal.py:1576 +msgid "Remove users" +msgstr "" + +#: ipaserver/plugins/internal.py:1578 +#, python-brace-format +msgid "Remove user '${primary_key}' from user groups" +msgstr "" + +#: ipaserver/plugins/internal.py:1581 +#, python-brace-format +msgid "Remove user '${primary_key}' from netgroups" +msgstr "" + +#: ipaserver/plugins/internal.py:1584 +#, python-brace-format +msgid "Remove user '${primary_key}' from roles" +msgstr "" + +#: ipaserver/plugins/internal.py:1587 +#, python-brace-format +msgid "Remove user '${primary_key}' from HBAC rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1590 +#, python-brace-format +msgid "Remove user '${primary_key}' from sudo rules" +msgstr "" + +#: ipaserver/plugins/internal.py:1592 +#, python-brace-format +msgid "" +"Are you sure you want to ${action} the user?
The change will take effect " +"immediately." +msgstr "" + +#: ipaserver/plugins/internal.py:1593 +#, python-brace-format +msgid "Click to ${action}" +msgstr "" + +#: ipaserver/plugins/internal.py:1594 +msgid "Unlock" +msgstr "" + +#: ipaserver/plugins/internal.py:1595 +#, python-brace-format +msgid "Are you sure you want to unlock user ${object}?" +msgstr "" + +#: ipaserver/plugins/internal.py:1598 +msgid "Add vault" +msgstr "" + +#: ipaserver/plugins/internal.py:1600 +#, python-brace-format +msgid "Add user groups into members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1603 +#, python-brace-format +msgid "Add services into members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1606 +#, python-brace-format +msgid "Add users into members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1609 +#, python-brace-format +msgid "Add user groups into owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1612 +#, python-brace-format +msgid "Add services into owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1615 +#, python-brace-format +msgid "Add users into owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1618 +msgid "" +"Secrets can be added/retrieved to vault only by using vault-archive and " +"vault-retrieve from CLI." +msgstr "" + +#: ipaserver/plugins/internal.py:1622 +msgid "" +"Content of 'standard' vaults can be seen by users with higher privileges " +"(admins)." +msgstr "" + +#: ipaserver/plugins/internal.py:1625 +msgid "Asymmetric" +msgstr "" + +#: ipaserver/plugins/internal.py:1626 +msgid "Vaults Config" +msgstr "" + +#: ipaserver/plugins/internal.py:1628 +msgid "Members" +msgstr "" + +#: ipaserver/plugins/internal.py:1629 +msgid "My User Vaults" +msgstr "" + +#: ipaserver/plugins/internal.py:1630 +msgid "Owners" +msgstr "" + +#: ipaserver/plugins/internal.py:1631 +msgid "Remove vaults" +msgstr "" + +#: ipaserver/plugins/internal.py:1633 +#, python-brace-format +msgid "Remove user groups from members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1636 +#, python-brace-format +msgid "Remove services from members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1639 +#, python-brace-format +msgid "Remove users from members of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1642 +#, python-brace-format +msgid "Remove user groups from owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1645 +#, python-brace-format +msgid "Remove services from owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1648 +#, python-brace-format +msgid "Remove users from owners of vault '${primary_key}'" +msgstr "" + +#: ipaserver/plugins/internal.py:1651 +msgid "Service Vaults" +msgstr "" + +#: ipaserver/plugins/internal.py:1652 +msgid "Shared" +msgstr "" + +#: ipaserver/plugins/internal.py:1653 +msgid "Shared Vaults" +msgstr "" + +#: ipaserver/plugins/internal.py:1654 +msgid "Standard" +msgstr "" + +#: ipaserver/plugins/internal.py:1655 +msgid "Symmetric" +msgstr "" + +#: ipaserver/plugins/internal.py:1656 +msgid "Vault Type" +msgstr "" + +#: ipaserver/plugins/internal.py:1658 +msgid "" +"Only standard vaults can be created in WebUI, use CLI for other types of " +"vaults." +msgstr "" + +#: ipaserver/plugins/internal.py:1662 +msgid "User Vaults" +msgstr "" + +#: ipaserver/plugins/internal.py:1666 ipaserver/plugins/passwd.py:98 +msgid "Current Password" +msgstr "" + +#: ipaserver/plugins/internal.py:1667 +msgid "Current password is required" +msgstr "" + +#: ipaserver/plugins/internal.py:1668 +#, python-brace-format +msgid "Your password expires in ${days} days." +msgstr "" + +#: ipaserver/plugins/internal.py:1669 +msgid "First OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:1672 ipaserver/plugins/passwd.py:95 +msgid "New Password" +msgstr "" + +#: ipaserver/plugins/internal.py:1673 +msgid "New password is required" +msgstr "" + +#: ipaserver/plugins/internal.py:1675 +msgid "" +" One-Time-Password(OTP): " +"Generate new OTP code for each OTP field." +msgstr "" + +#: ipaserver/plugins/internal.py:1677 +msgid "Token synchronization failed" +msgstr "" + +#: ipaserver/plugins/internal.py:1678 +msgid "The username, password or token codes are not correct" +msgstr "" + +#: ipaserver/plugins/internal.py:1679 +msgid "Token was synchronized" +msgstr "" + +#: ipaserver/plugins/internal.py:1682 +msgid "Password change complete" +msgstr "" + +#: ipaserver/plugins/internal.py:1684 +msgid "Your password has expired. Please enter a new password." +msgstr "" + +#: ipaserver/plugins/internal.py:1685 +msgid "Passwords must match" +msgstr "" + +#: ipaserver/plugins/internal.py:1686 +msgid "Password reset was not successful." +msgstr "" + +#: ipaserver/plugins/internal.py:1688 +msgid "Reset your password." +msgstr "" + +#: ipaserver/plugins/internal.py:1689 +msgid "Second OTP" +msgstr "" + +#: ipaserver/plugins/internal.py:1690 ipaclient/plugins/otptoken.py:149 +msgid "Token ID" +msgstr "" + +#: ipaserver/plugins/internal.py:1691 +msgid "Verify Password" +msgstr "" + +#: ipaserver/plugins/internal.py:1697 ipaclient/plugins/vault.py:373 +msgid "Change password" +msgstr "" + +#: ipaserver/plugins/internal.py:1701 +msgid "Are you sure you want to delete selected entries?" +msgstr "" + +#: ipaserver/plugins/internal.py:1702 +#, python-brace-format +msgid "${count} item(s) deleted" +msgstr "" + +#: ipaserver/plugins/internal.py:1703 +msgid "Are you sure you want to disable selected entries?" +msgstr "" + +#: ipaserver/plugins/internal.py:1704 +#, python-brace-format +msgid "${count} item(s) disabled" +msgstr "" + +#: ipaserver/plugins/internal.py:1705 +msgid "Are you sure you want to enable selected entries?" +msgstr "" + +#: ipaserver/plugins/internal.py:1706 +#, python-brace-format +msgid "${count} item(s) enabled" +msgstr "" + +#: ipaserver/plugins/internal.py:1707 +msgid "Some entries were not deleted" +msgstr "" + +#: ipaserver/plugins/internal.py:1710 +msgid "Quick Links" +msgstr "" + +#: ipaserver/plugins/internal.py:1711 +msgid "Select All" +msgstr "" + +#: ipaserver/plugins/internal.py:1712 +#, python-brace-format +msgid "" +"Query returned more results than the configured size limit. Displaying the " +"first ${counter} results." +msgstr "" + +#: ipaserver/plugins/internal.py:1713 +msgid "Unselect All" +msgstr "" + +#: ipaserver/plugins/internal.py:1717 +msgid "" +"

Browser Kerberos Setup

\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1721 +msgid "" +"

Firefox

\n" +"\n" +"

\n" +" You can configure Firefox to use Kerberos for Single Sign-on. " +"The following instructions will guide you in configuring your web browser to " +"send your Kerberos credentials to the appropriate Key Distribution Center " +"which enables Single Sign-on.\n" +"

\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1733 +msgid "" +"
    \n" +"
  1. \n" +"

    \n" +"Import " +"Certificate Authority certificate\n" +"

    \n" +"

    \n" +" Make sure you select all three checkboxes.\n" +"

    \n" +"
    2. \n" +"
  2. \n" +" In the address bar of Firefox, type about:config to display the list of current configuration options.\n" +"
    3. \n" +"
  3. \n" +" In the Filter field, type negotiate to restrict " +"the list of options.\n" +"
    4. \n" +"
  4. \n" +" Double-click the network.negotiate-auth.trusted-uris entry to display the Enter string value dialog box.\n" +"
    5. \n" +"
  5. \n" +" Enter the name of the domain against which you want to " +"authenticate, for example, .example.com.\n" +"
    6. \n" +"
  6. Return to Web UI
    7. \n" +"
\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1769 +msgid "" +"

Chrome

\n" +"\n" +"

\n" +" You can configure Chrome to use Kerberos for Single Sign-on. The " +"following instructions will guide you in configuring your web browser to " +"send your Kerberos credentials to the appropriate Key Distribution Center " +"which enables Single Sign-on.\n" +"

\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1781 +msgid "" +"

Import CA Certificate

\n" +"
    \n" +"
  1. \n" +" Download the CA certificate. " +"Alternatively, if the host is also an IdM client, you can find the " +"certificate in /etc/ipa/ca.crt.\n" +"
    2. \n" +"
  2. \n" +" Click the menu button with the Customize and control " +"Google Chrome tooltip, which is by default in the top right-hand corner " +"of Chrome, and click Settings.\n" +"
    3. \n" +"
  3. \n" +" Click Show advanced settings to display more " +"options, and then click the Manage certificates button located " +"under the HTTPS/SSL heading.\n" +"
    4. \n" +"
  4. \n" +" In the Authorities tab, click the Import " +"button at the bottom.\n" +"
    5. \n" +"
  5. Select the CA certificate file that you downloaded in the first step.\n" +"
\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1810 +msgid "" +"

\n" +" Enable SPNEGO (Simple and Protected GSSAPI Negotiation " +"Mechanism) to Use Kerberos Authentication\n" +" in Chrome\n" +"

\n" +"
    \n" +"
  1. \n" +" Make sure you have the necessary directory created by " +"running:\n" +"
    \n" +" [root@client]# mkdir -p /etc/opt/chrome/policies/" +"managed/\n" +"
    \n" +"
    2. \n" +"
  2. \n" +" Create a new /etc/opt/chrome/policies/managed/mydomain." +"json file with write privileges limited to the system administrator " +"or root, and include the following line:\n" +"
    \n" +" { \"AuthServerWhitelist\": \"*.example.com\" }\n" +"
    \n" +"
    \n" +" You can do this by running:\n" +"
    \n" +"
    \n" +" [root@server]# echo '{ \"AuthServerWhitelist\": \"*.example.com\" }' > /etc/opt/chrome/policies/" +"managed/mydomain.json\n" +"
    \n" +"
    3. \n" +"
\n" +"
    \n" +"

    \n" +"Note: If using Chromium, use /etc/chromium/policies/" +"managed/ instead of /etc/opt/chrome/policies/managed/ " +"for the two SPNEGO Chrome configuration steps above.\n" +"

    \n" +"
\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1855 +msgid "" +"

Internet Explorer

\n" +"

WARNING: Internet Explorer is no longer a supported " +"browser.

\n" +"

\n" +" Once you are able to log into the workstation with your kerberos " +"key you are now able to use that ticket in Internet Explorer.\n" +"

\n" +"

\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1866 +msgid "" +"Log into the Windows machine using an account of your Kerberos realm " +"(administrative domain)\n" +"

\n" +"

\n" +"In Internet Explorer, click Tools, and then click Internet Options.\n" +"

\n" +"
\n" +"
    \n" +"
  1. Click the Security tab
    2. \n" +"
  2. Click Local intranet
    3. \n" +"
  3. Click Sites
    4. \n" +"
  4. Click Advanced
    5. \n" +"
  5. Add your domain to the list
    6. \n" +"
\n" +"
    \n" +"
  1. Click the Security tab
    2. \n" +"
  2. Click Local intranet
    3. \n" +"
  3. Click Custom Level
    4. \n" +"
  4. Select Automatic logon only in Intranet zone
    5. \n" +"
\n" +"\n" +"
    \n" +"
  1. Visit a kerberized web site using IE (You must use the fully-qualified " +"Domain Name in the URL)
    2. \n" +"
  2. You are all set.
    3. \n" +"
\n" +"
\n" +"\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1903 +msgid "Working" +msgstr "" + +#: ipaserver/plugins/internal.py:1906 +msgid "Audit" +msgstr "" + +#: ipaserver/plugins/internal.py:1907 +msgid "Authentication" +msgstr "" + +#: ipaserver/plugins/internal.py:1908 ipaserver/plugins/automember.py:818 +msgid "Automember" +msgstr "" + +#: ipaserver/plugins/internal.py:1909 +msgid "Automount" +msgstr "" + +#: ipaserver/plugins/internal.py:1911 +msgid "DNS" +msgstr "" + +#: ipaserver/plugins/internal.py:1912 +msgid "Host-Based Access Control" +msgstr "" + +#: ipaserver/plugins/internal.py:1913 +msgid "Identity" +msgstr "" + +#: ipaserver/plugins/internal.py:1914 ipaserver/plugins/location.py:157 +#: ipaserver/plugins/server.py:71 +msgid "IPA Server" +msgstr "" + +#: ipaserver/plugins/internal.py:1915 +msgid "Network Services" +msgstr "" + +#: ipaserver/plugins/internal.py:1916 +msgid "Policy" +msgstr "" + +#: ipaserver/plugins/internal.py:1917 +msgid "Role-Based Access Control" +msgstr "" + +#: ipaserver/plugins/internal.py:1918 +msgid "Sudo" +msgstr "" + +#: ipaserver/plugins/internal.py:1919 +msgid "Topology" +msgstr "" + +#: ipaserver/plugins/internal.py:1920 ipaserver/plugins/trust.py:530 +msgid "Trusts" +msgstr "" + +#: ipaserver/plugins/internal.py:1922 +msgid "True" +msgstr "" + +#: ipaserver/plugins/internal.py:1924 +msgid "" +"

Unable to verify your Kerberos credentials

\n" +"

\n" +" Please make sure that you have valid Kerberos tickets " +"(obtainable via kinit), and that you have configured your " +"browser correctly.\n" +"

\n" +"\n" +"

Browser configuration

\n" +"\n" +"
\n" +"

\n" +" If this is your first time, please configure your browser.\n" +"

\n" +"
\n" +msgstr "" + +#: ipaserver/plugins/internal.py:1941 +msgid "API Browser" +msgstr "" + +#: ipaserver/plugins/internal.py:1942 +msgid "First" +msgstr "" + +#: ipaserver/plugins/internal.py:1943 +msgid "Last" +msgstr "" + +#: ipaserver/plugins/internal.py:1944 +msgid "Next" +msgstr "" + +#: ipaserver/plugins/internal.py:1945 +msgid "Page" +msgstr "" + +#: ipaserver/plugins/internal.py:1946 +msgid "Prev" +msgstr "" + +#: ipaserver/plugins/internal.py:1947 +msgid "Undo" +msgstr "" + +#: ipaserver/plugins/internal.py:1948 +msgid "Undo this change." +msgstr "" + +#: ipaserver/plugins/internal.py:1949 +msgid "Undo All" +msgstr "" + +#: ipaserver/plugins/internal.py:1950 +msgid "Undo all changes in this field." +msgstr "" + +#: ipaserver/plugins/internal.py:1952 +msgid "Text does not match field pattern" +msgstr "" + +#: ipaserver/plugins/internal.py:1953 +msgid "Must be an UTC date/time value (e.g., \"2014-01-20 17:58:01Z\")" +msgstr "" + +#: ipaserver/plugins/internal.py:1954 +msgid "Must be a decimal number" +msgstr "" + +#: ipaserver/plugins/internal.py:1955 +msgid "Format error" +msgstr "" + +#: ipaserver/plugins/internal.py:1956 +msgid "Must be an integer" +msgstr "" + +#: ipaserver/plugins/internal.py:1957 +msgid "Not a valid IP address" +msgstr "" + +#: ipaserver/plugins/internal.py:1958 +msgid "Not a valid IPv4 address" +msgstr "" + +#: ipaserver/plugins/internal.py:1959 +msgid "Not a valid IPv6 address" +msgstr "" + +#: ipaserver/plugins/internal.py:1960 +#, python-brace-format +msgid "Maximum value is ${value}" +msgstr "" + +#: ipaserver/plugins/internal.py:1961 +#, python-brace-format +msgid "Minimum value is ${value}" +msgstr "" + +#: ipaserver/plugins/internal.py:1962 +msgid "Not a valid network address (examples: 2001:db8::/64, 192.0.2.0/24)" +msgstr "" + +#: ipaserver/plugins/internal.py:1963 +msgid "Parse error" +msgstr "" + +#: ipaserver/plugins/internal.py:1964 +msgid "Must be a positive number" +msgstr "" + +#: ipaserver/plugins/internal.py:1965 +#, python-brace-format +msgid "'${port}' is not a valid port" +msgstr "" + +#: ipaserver/plugins/internal.py:1966 +msgid "Required field" +msgstr "" + +#: ipaserver/plugins/internal.py:1967 +msgid "Unsupported value" +msgstr "" + +#: ipaserver/plugins/internal.py:1972 +msgid "Dict of I18N messages" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:26 msgid "" "\n" -" Search for users matching the provided certificate.\n" +"Service Constrained Delegation\n" "\n" -" This command relies on SSSD to retrieve the list of matching users and\n" -" may return cached data. For more information on purging SSSD cache,\n" -" please refer to sss_cache documentation.\n" -" " +"Manage rules to allow constrained delegation of credentials so\n" +"that a service can impersonate a user when communicating with another\n" +"service without requiring the user to actually forward their TGT.\n" +"This makes for a much better method of delegating credentials as it\n" +"prevents exposure of the short term secret of the user.\n" +"\n" +"The naming convention is to append the word \"target\" or \"targets\" to\n" +"a matching rule name. This is not mandatory but helps conceptually\n" +"to associate rules and targets.\n" +"\n" +"A rule consists of two things:\n" +" - A list of targets the rule applies to\n" +" - A list of memberPrincipals that are allowed to delegate for\n" +" those targets\n" +"\n" +"A target consists of a list of principals that can be delegated.\n" +"\n" +"In English, a rule says that this principal can delegate as this\n" +"list of principals, as defined by these targets.\n" +"\n" +"In both a rule and a target Kerberos principals may be specified\n" +"by their name or an alias and the realm can be omitted. Additionally,\n" +"hosts can be specified by their names. If Kerberos principal specified\n" +"has a single component and does not end with '$' sign, it will be treated\n" +"as a host name. Kerberos principal names ending with '$' are typically\n" +"used as aliases for Active Directory-related services.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new constrained delegation rule:\n" +" ipa servicedelegationrule-add ftp-delegation\n" +"\n" +" Add a new constrained delegation target:\n" +" ipa servicedelegationtarget-add ftp-delegation-target\n" +"\n" +" Add a principal to the rule:\n" +" ipa servicedelegationrule-add-member --principals=ftp/ipa.example." +"com ftp-delegation\n" +"\n" +" Add a host principal of the host 'ipa.example.com' to the rule:\n" +" ipa servicedelegationrule-add-member --principals=ipa.example.com " +"ftp-delegation\n" +"\n" +" Add our target to the rule:\n" +" ipa servicedelegationrule-add-target --servicedelegationtargets=ftp-" +"delegation-target ftp-delegation\n" +"\n" +" Add a principal to the target:\n" +" ipa servicedelegationtarget-add-member --principals=ldap/ipa.example." +"com ftp-delegation-target\n" +"\n" +" Display information about a named delegation rule and target:\n" +" ipa servicedelegationrule_show ftp-delegation\n" +" ipa servicedelegationtarget_show ftp-delegation-target\n" +"\n" +" Remove a constrained delegation:\n" +" ipa servicedelegationrule-del ftp-delegation-target\n" +" ipa servicedelegationtarget-del ftp-delegation\n" +"\n" +"In this example the ftp service can get a TGT for the ldap service on\n" +"the bound user's behalf.\n" +"\n" +"It is strongly discouraged to modify the delegations that ship with\n" +"IPA, ipa-http-delegation and its targets ipa-cifs-delegation-targets and\n" +"ipa-ldap-delegation-targets. Incorrect changes can remove the ability\n" +"to delegate, causing the framework to stop functioning.\n" msgstr "" -#: ipaserver/plugins/certmap.py:587 +#: ipaserver/plugins/servicedelegation.py:162 +#: ipaserver/plugins/delegation.py:75 ipaserver/plugins/delegation.py:76 +msgid "Delegation name" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:167 +msgid "Allowed Target" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:172 +msgid "Allowed to Impersonate" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:177 +msgid "Member principals" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:189 #, python-format -msgid "%(count)s user matched" -msgid_plural "%(count)s users matched" +msgid "Malformed principal: %(error)s" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:199 +msgid "Add target to a named service delegation." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:213 +#: ipaserver/plugins/servicedelegation.py:303 +#: ipaserver/plugins/baseldap.py:1633 +#, python-format +msgid "member %s" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:287 +msgid "Remove member from a named service delegation." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:378 +#: ipaserver/plugins/servicedelegation.py:411 +msgid "service delegation rule" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:379 +msgid "service delegation rules" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:390 +msgid "Service delegation rules" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:391 +msgid "Service delegation rule" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:396 +msgid "Create a new service delegation rule." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:398 +#, python-format +msgid "Added service delegation rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:403 +msgid "Delete service delegation." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:405 +#, python-format +msgid "Deleted service delegation \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:413 +msgid "privileged service delegation rule" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:420 +msgid "Search for service delegations rule." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:423 +#, python-format +msgid "%(count)d service delegation rule matched" +msgid_plural "%(count)d service delegation rules matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/serverrole.py:13 -msgid "" -"\n" -"IPA server roles\n" +#: ipaserver/plugins/servicedelegation.py:430 +msgid "Display information about a named service delegation rule." msgstr "" -#: ipaserver/plugins/serverrole.py:15 -msgid "" -"\n" -"Get status of roles (DNS server, CA, etc.) provided by IPA masters.\n" +#: ipaserver/plugins/servicedelegation.py:435 +msgid "Add member to a named service delegation rule." msgstr "" -#: ipaserver/plugins/serverrole.py:17 -msgid "" -"\n" -"The status of a role is either enabled, configured, or absent.\n" +#: ipaserver/plugins/servicedelegation.py:444 +msgid "Remove member from a named service delegation rule." msgstr "" -#: ipaserver/plugins/serverrole.py:21 -msgid "" -"\n" -" Show status of 'DNS server' role on a server:\n" -" ipa server-role-show ipa.example.com \"DNS server\"\n" +#: ipaserver/plugins/servicedelegation.py:452 +msgid "Add target to a named service delegation rule." msgstr "" -#: ipaserver/plugins/serverrole.py:24 -msgid "" -"\n" -" Show status of all roles containing 'AD' on a server:\n" -" ipa server-role-find --server ipa.example.com --role=\"AD trust " -"controller\"\n" +#: ipaserver/plugins/servicedelegation.py:462 +msgid "Remove target from a named service delegation rule." msgstr "" -#: ipaserver/plugins/serverrole.py:27 -msgid "" -"\n" -" Show status of all configured roles on a server:\n" -" ipa server-role-find ipa.example.com\n" +#: ipaserver/plugins/servicedelegation.py:471 +#: ipaserver/plugins/servicedelegation.py:500 +msgid "service delegation target" msgstr "" -#: ipaserver/plugins/serverrole.py:30 -msgid "" -"\n" -" Show implicit IPA master role:\n" -" ipa server-role-find --include-master\n" +#: ipaserver/plugins/servicedelegation.py:472 +msgid "service delegation targets" msgstr "" -#: ipaserver/plugins/serverrole.py:46 -msgid "server role" +#: ipaserver/plugins/servicedelegation.py:479 +msgid "Service delegation targets" msgstr "" -#: ipaserver/plugins/serverrole.py:47 -msgid "server roles" +#: ipaserver/plugins/servicedelegation.py:480 +msgid "Service delegation target" msgstr "" -#: ipaserver/plugins/serverrole.py:51 -msgid "IPA Server Roles" +#: ipaserver/plugins/servicedelegation.py:485 +msgid "Create a new service delegation target." msgstr "" -#: ipaserver/plugins/serverrole.py:52 -msgid "IPA Server Role" -msgstr "" - -#: ipaserver/plugins/serverrole.py:64 ipaserver/plugins/serverrole.py:191 -#: ipaserver/plugins/role.py:145 ipaclient/remote_plugins/2_114/role.py:63 -msgid "Role name" -msgstr "" - -#: ipaserver/plugins/serverrole.py:65 -msgid "IPA server role name" -msgstr "" - -#: ipaserver/plugins/serverrole.py:71 -msgid "Role status" -msgstr "" - -#: ipaserver/plugins/serverrole.py:72 -msgid "Status of the role" -msgstr "" - -#: ipaserver/plugins/serverrole.py:89 -msgid "Show role status on a server" -msgstr "" - -#: ipaserver/plugins/serverrole.py:113 -msgid "Find a server role on a server(s)" -msgstr "" - -#: ipaserver/plugins/serverrole.py:118 +#: ipaserver/plugins/servicedelegation.py:487 #, python-format -msgid "%(count)s server role matched" -msgid_plural "%(count)s server roles matched" +msgid "Added service delegation target \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:492 +msgid "Delete service delegation target." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:494 +#, python-format +msgid "Deleted service delegation target \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:502 +msgid "privileged service delegation target" +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:509 +msgid "Search for service delegation target." +msgstr "" + +#: ipaserver/plugins/servicedelegation.py:512 +#, python-format +msgid "%(count)d service delegation target matched" +msgid_plural "%(count)d service delegation targets matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/serverrole.py:139 -msgid "Include IPA master entries" +#: ipaserver/plugins/servicedelegation.py:545 +msgid "Display information about a named service delegation target." msgstr "" -#: ipaserver/plugins/serverrole.py:185 ipaserver/plugins/role.py:79 -msgid "role" +#: ipaserver/plugins/servicedelegation.py:550 +msgid "Add member to a named service delegation target." msgstr "" -#: ipaserver/plugins/serverrole.py:186 ipaserver/plugins/role.py:80 -msgid "roles" -msgstr "" - -#: ipaserver/plugins/serverrole.py:192 -msgid "IPA role name" +#: ipaserver/plugins/servicedelegation.py:559 +msgid "Remove member from a named service delegation target." msgstr "" #: ipaserver/plugins/batch.py:35 @@ -5482,8249 +8859,614 @@ msgstr "" msgid "Number of permissions removed" msgstr "" -#: ipaserver/plugins/pwpolicy.py:43 +#: ipaserver/plugins/idviews.py:59 ipaclient/remote_plugins/2_114/idviews.py:19 msgid "" "\n" -"Password policy\n" +"ID Views\n" "\n" -"A password policy sets limitations on IPA passwords, including maximum\n" -"lifetime, minimum lifetime, the number of passwords to save in\n" -"history, the number of character classes required (for stronger passwords)\n" -"and the minimum password length.\n" +"Manage ID Views\n" "\n" -"By default there is a single, global policy for all users. You can also\n" -"create a password policy to apply to a group. Each user is only subject\n" -"to one password policy, either the group policy or the global policy. A\n" -"group policy stands alone; it is not a super-set of the global policy plus\n" -"custom settings.\n" -"\n" -"Each group password policy requires a unique priority setting. If a user\n" -"is in multiple groups that have password policies, this priority determines\n" -"which password policy is applied. A lower value indicates a higher priority\n" -"policy.\n" -"\n" -"Group password policies are automatically removed when the groups they\n" -"are associated with are removed.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Modify the global policy:\n" -" ipa pwpolicy-mod --minlength=10\n" -"\n" -" Add a new group password policy:\n" -" ipa pwpolicy-add --maxlife=90 --minlife=1 --history=10 --minclasses=3 --" -"minlength=8 --priority=10 localadmins\n" -"\n" -" Display the global password policy:\n" -" ipa pwpolicy-show\n" -"\n" -" Display a group password policy:\n" -" ipa pwpolicy-show localadmins\n" -"\n" -" Display the policy that would be applied to a given user:\n" -" ipa pwpolicy-show --user=tuser1\n" -"\n" -" Modify a group password policy:\n" -" ipa pwpolicy-mod --minclasses=2 localadmins\n" +"IPA allows to override certain properties of users and groups per each " +"host.\n" +"This functionality is primarily used to allow migration from older systems " +"or\n" +"other Identity Management solutions.\n" msgstr "" -#: ipaserver/plugins/pwpolicy.py:92 -msgid "Class of Service object used for linking policies with groups" +#: ipaserver/plugins/idviews.py:72 ipaserver/plugins/idviews.py:123 +#: ipaserver/plugins/idviews.py:131 ipaserver/plugins/idviews.py:351 +#: ipaserver/plugins/idviews.py:803 +msgid "ID View" msgstr "" -#: ipaserver/plugins/pwpolicy.py:143 -#, python-format -msgid "priority must be a unique value (%(prio)d already used by %(gname)s)" +#: ipaserver/plugins/idviews.py:74 +msgid "system ID View" msgstr "" -#: ipaserver/plugins/pwpolicy.py:171 -msgid "Add Class of Service entry" +#: ipaserver/plugins/idviews.py:80 +msgid "Fallback to AD DC LDAP" msgstr "" -#: ipaserver/plugins/pwpolicy.py:194 -msgid "Delete Class of Service entry" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:200 -msgid "Modify Class of Service entry" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:218 -msgid "Display Class of Service entry" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:224 -msgid "Search for Class of Service entry" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:237 -msgid "password policy" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:238 -msgid "password policies" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:291 -msgid "Password Policies" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:292 ipaserver/plugins/internal.py:1223 -msgid "Password Policy" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:297 ipaserver/plugins/internal.py:1623 -msgid "Group" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:298 -msgid "Manage password policy for specific group" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:303 -msgid "Max lifetime (days)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:304 -msgid "Maximum password lifetime (in days)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:310 -msgid "Min lifetime (hours)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:311 -msgid "Minimum password lifetime (in hours)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:316 -msgid "History size" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:317 -msgid "Password history size" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:322 -msgid "Character classes" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:323 -msgid "Minimum number of character classes" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:329 -msgid "Min length" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:330 -msgid "Minimum length of password" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:336 -msgid "Priority of the policy (higher number means lower priority" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:343 -msgid "Max failures" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:344 -msgid "Consecutive failures before lockout" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:350 -msgid "Failure reset interval" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:351 -msgid "Period after which failure count will be reset (seconds)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:357 -msgid "Lockout duration" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:358 -msgid "Period for which lockout is enforced (seconds)" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:411 -msgid "Maximum password life must be greater than minimum." -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:429 -msgid "Add a new group password policy." -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:455 -msgid "Delete a group password policy." -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:467 -msgid "cannot delete global password policy" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:482 -msgid "Modify a group password policy." -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:496 -msgid "priority cannot be set on global policy" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:528 -msgid "Display information about password policy." -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:533 -msgid "Display effective policy for a specific user" -msgstr "" - -#: ipaserver/plugins/pwpolicy.py:560 -msgid "Search for group password policies." -msgstr "" - -#: ipaserver/plugins/session.py:12 +#: ipaserver/plugins/idviews.py:81 msgid "" -"\n" -"Session Support for IPA\n" +"Allow falling back to AD DC LDAP when resolving AD trusted objects. For two-" +"way trusts only." msgstr "" -#: ipaserver/plugins/session.py:23 -msgid "RPC command used to log the current user out of their session." +#: ipaserver/plugins/idviews.py:124 ipaserver/plugins/idviews.py:130 +msgid "ID Views" msgstr "" -#: ipaserver/plugins/otptoken.py:42 -msgid "" -"\n" -"OTP Tokens\n" +#: ipaserver/plugins/idviews.py:136 +msgid "ID View Name" msgstr "" -#: ipaserver/plugins/otptoken.py:44 -msgid "" -"\n" -"Manage OTP tokens.\n" +#: ipaserver/plugins/idviews.py:145 +msgid "User object overrides" msgstr "" -#: ipaserver/plugins/otptoken.py:46 -msgid "" -"\n" -"IPA supports the use of OTP tokens for multi-factor authentication. This\n" -"code enables the management of OTP tokens.\n" +#: ipaserver/plugins/idviews.py:149 +msgid "Group object overrides" msgstr "" -#: ipaserver/plugins/otptoken.py:51 -msgid "" -"\n" -" Add a new token:\n" -" ipa otptoken-add --type=totp --owner=jdoe --desc=\"My soft token\"\n" +#: ipaserver/plugins/idviews.py:153 +msgid "Hosts the view applies to" msgstr "" -#: ipaserver/plugins/otptoken.py:54 -msgid "" -"\n" -" Examine the token:\n" -" ipa otptoken-show a93db710-a31a-4639-8647-f15b2c70b78a\n" -msgstr "" - -#: ipaserver/plugins/otptoken.py:57 -msgid "" -"\n" -" Change the vendor:\n" -" ipa otptoken-mod a93db710-a31a-4639-8647-f15b2c70b78a --vendor=\"Red Hat" -"\"\n" -msgstr "" - -#: ipaserver/plugins/otptoken.py:60 -msgid "" -"\n" -" Delete a token:\n" -" ipa otptoken-del a93db710-a31a-4639-8647-f15b2c70b78a\n" -msgstr "" - -#: ipaserver/plugins/otptoken.py:137 -msgid "OTP token" -msgstr "" - -#: ipaserver/plugins/otptoken.py:138 -msgid "OTP tokens" -msgstr "" - -#: ipaserver/plugins/otptoken.py:154 -msgid "OTP Tokens" -msgstr "" - -#: ipaserver/plugins/otptoken.py:155 -msgid "OTP Token" -msgstr "" - -#: ipaserver/plugins/otptoken.py:160 -msgid "Unique ID" -msgstr "" - -#: ipaserver/plugins/otptoken.py:166 -msgid "Type of the token" -msgstr "" - -#: ipaserver/plugins/otptoken.py:175 -msgid "Token description (informational only)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:179 -msgid "Owner" -msgstr "" - -#: ipaserver/plugins/otptoken.py:180 -msgid "Assigned user of the token (default: self)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:184 -msgid "Assigned manager of the token (default: self)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:189 ipaserver/plugins/internal.py:1895 -msgid "Disabled" -msgstr "" - -#: ipaserver/plugins/otptoken.py:190 -msgid "Mark the token as disabled (default: false)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:194 -msgid "Validity start" -msgstr "" - -#: ipaserver/plugins/otptoken.py:195 -msgid "First date/time the token can be used" -msgstr "" - -#: ipaserver/plugins/otptoken.py:199 -msgid "Validity end" -msgstr "" - -#: ipaserver/plugins/otptoken.py:200 -msgid "Last date/time the token can be used" -msgstr "" - -#: ipaserver/plugins/otptoken.py:204 -msgid "Vendor" -msgstr "" - -#: ipaserver/plugins/otptoken.py:205 -msgid "Token vendor name (informational only)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:209 -msgid "Model" -msgstr "" - -#: ipaserver/plugins/otptoken.py:210 -msgid "Token model (informational only)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:214 -msgid "Serial" -msgstr "" - -#: ipaserver/plugins/otptoken.py:215 -msgid "Token serial (informational only)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:220 -msgid "Token secret (Base32; default: random)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:229 ipaserver/plugins/dns.py:1007 -#: ipaserver/plugins/dns.py:1050 ipaserver/plugins/dns.py:1399 -msgid "Algorithm" -msgstr "" - -#: ipaserver/plugins/otptoken.py:230 -msgid "Token hash algorithm" -msgstr "" - -#: ipaserver/plugins/otptoken.py:238 -msgid "Digits" -msgstr "" - -#: ipaserver/plugins/otptoken.py:239 -msgid "Number of digits each token code will have" -msgstr "" - -#: ipaserver/plugins/otptoken.py:247 -msgid "Clock offset" -msgstr "" - -#: ipaserver/plugins/otptoken.py:248 -msgid "TOTP token / FreeIPA server time difference" -msgstr "" - -#: ipaserver/plugins/otptoken.py:255 -msgid "Clock interval" -msgstr "" - -#: ipaserver/plugins/otptoken.py:256 -msgid "Length of TOTP token code validity" -msgstr "" - -#: ipaserver/plugins/otptoken.py:264 -msgid "Counter" -msgstr "" - -#: ipaserver/plugins/otptoken.py:265 -msgid "Initial counter for the HOTP token" -msgstr "" - -#: ipaserver/plugins/otptoken.py:272 -msgid "URI" -msgstr "" - -#: ipaserver/plugins/otptoken.py:280 -msgid "Add a new OTP token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:281 -#, python-format -msgid "Added OTP token \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/otptoken.py:284 -msgid "(deprecated)" -msgstr "" - -#: ipaserver/plugins/otptoken.py:285 -msgid "Do not display QR code" -msgstr "" - -#: ipaserver/plugins/otptoken.py:335 -msgid "cannot be empty" -msgstr "" - -#: ipaserver/plugins/otptoken.py:366 -msgid "Delete an OTP token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:367 -#, python-format -msgid "Deleted OTP token \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/otptoken.py:372 -msgid "Modify a OTP token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:373 -#, python-format -msgid "Modified OTP token \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/otptoken.py:421 -msgid "Search for OTP token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:422 -#, python-format -msgid "%(count)d OTP token matched" -msgid_plural "%(count)d OTP tokens matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/otptoken.py:450 -msgid "Display information about an OTP token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:463 -msgid "Add users that can manage this token." -msgstr "" - -#: ipaserver/plugins/otptoken.py:469 -msgid "Remove users that can manage this token." -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:28 -msgid "" -"\n" -"HBAC Services\n" -"\n" -"The PAM services that HBAC can control access to. The name used here\n" -"must match the service name that PAM is evaluating.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new HBAC service:\n" -" ipa hbacsvc-add tftp\n" -"\n" -" Modify an existing HBAC service:\n" -" ipa hbacsvc-mod --desc=\"TFTP service\" tftp\n" -"\n" -" Search for HBAC services. This example will return two results, the FTP\n" -" service and the newly-added tftp service:\n" -" ipa hbacsvc-find ftp\n" -"\n" -" Delete an HBAC service:\n" -" ipa hbacsvc-del tftp\n" -"\n" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:61 ipaserver/plugins/hbacsvc.py:102 -msgid "HBAC service" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:62 -msgid "HBAC services" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:95 ipaserver/plugins/hbacrule.py:286 -msgid "HBAC Services" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:96 -msgid "HBAC Service" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:101 -msgid "Service name" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:109 -msgid "HBAC service description" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:117 -msgid "Add a new HBAC service." -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:119 -#, python-format -msgid "Added HBAC service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:125 -msgid "Delete an existing HBAC service." -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:127 -#, python-format -msgid "Deleted HBAC service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:133 -msgid "Modify an HBAC service." -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:135 -#, python-format -msgid "Modified HBAC service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:141 -msgid "Search for HBAC services." -msgstr "" - -#: ipaserver/plugins/hbacsvc.py:144 -#, python-format -msgid "%(count)d HBAC service matched" -msgid_plural "%(count)d HBAC services matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/hbacsvc.py:151 -msgid "Display information about an HBAC service." -msgstr "" - -#: ipaserver/plugins/server.py:36 -msgid "" -"\n" -"IPA servers\n" -msgstr "" - -#: ipaserver/plugins/server.py:38 -msgid "" -"\n" -"Get information about installed IPA servers.\n" -msgstr "" - -#: ipaserver/plugins/server.py:42 -msgid "" -"\n" -" Find all servers:\n" -" ipa server-find\n" -msgstr "" - -#: ipaserver/plugins/server.py:45 -msgid "" -"\n" -" Show specific server:\n" -" ipa server-show ipa.example.com\n" -msgstr "" - -#: ipaserver/plugins/server.py:61 -msgid "server" -msgstr "" - -#: ipaserver/plugins/server.py:62 -msgid "servers" -msgstr "" - -#: ipaserver/plugins/server.py:70 -msgid "IPA Servers" -msgstr "" - -#: ipaserver/plugins/server.py:71 ipaserver/plugins/internal.py:1910 -#: ipaserver/plugins/location.py:157 -msgid "IPA Server" -msgstr "" - -#: ipaserver/plugins/server.py:112 ipaclient/remote_plugins/2_164/server.py:54 -msgid "Managed suffixes" -msgstr "" - -#: ipaserver/plugins/server.py:118 ipaclient/remote_plugins/2_156/server.py:51 -msgid "Min domain level" -msgstr "" - -#: ipaserver/plugins/server.py:119 ipaclient/remote_plugins/2_156/server.py:52 -msgid "Minimum domain level" -msgstr "" - -#: ipaserver/plugins/server.py:125 ipaclient/remote_plugins/2_156/server.py:56 -msgid "Max domain level" -msgstr "" - -#: ipaserver/plugins/server.py:126 ipaclient/remote_plugins/2_156/server.py:57 -msgid "Maximum domain level" -msgstr "" - -#: ipaserver/plugins/server.py:133 -msgid "Server location" -msgstr "" - -#: ipaserver/plugins/server.py:140 -msgid "Service weight" -msgstr "" - -#: ipaserver/plugins/server.py:141 -msgid "Weight for server services" -msgstr "" - -#: ipaserver/plugins/server.py:148 -msgid "Service relative weight" -msgstr "" - -#: ipaserver/plugins/server.py:149 -msgid "Relative weight for server services (counts per location)" -msgstr "" - -#: ipaserver/plugins/server.py:154 -msgid "Enabled server roles" -msgstr "" - -#: ipaserver/plugins/server.py:155 -msgid "List of enabled roles" -msgstr "" - -#: ipaserver/plugins/server.py:222 -msgid "Modify information about an IPA server." -msgstr "" - -#: ipaserver/plugins/server.py:224 -#, python-format -msgid "Modified IPA server \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/server.py:303 ipaclient/remote_plugins/2_156/server.py:104 -msgid "Search for IPA servers." -msgstr "" - -#: ipaserver/plugins/server.py:306 -#, python-format -msgid "%(count)d IPA server matched" -msgid_plural "%(count)d IPA servers matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/server.py:428 ipaclient/remote_plugins/2_156/server.py:200 -msgid "Show IPA server." -msgstr "" - -#: ipaserver/plugins/server.py:443 ipaclient/remote_plugins/2_156/server.py:64 -msgid "Delete IPA server." -msgstr "" - -#: ipaserver/plugins/server.py:444 -#, python-format -msgid "Deleted IPA server \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/server.py:449 -msgid "Ignore topology errors" -msgstr "" - -#: ipaserver/plugins/server.py:450 -msgid "Ignore topology connectivity problems after removal" -msgstr "" - -#: ipaserver/plugins/server.py:455 -msgid "Ignore check for last remaining CA or DNS server" -msgstr "" - -#: ipaserver/plugins/server.py:456 -msgid "Skip a check whether the last CA master or DNS server is removed" -msgstr "" - -#: ipaserver/plugins/server.py:462 -msgid "Force server removal" -msgstr "" - -#: ipaserver/plugins/server.py:463 -msgid "Force server removal even if it does not exist" -msgstr "" - -#: ipaserver/plugins/server.py:500 -msgid "" -"Replica is active DNSSEC key master. Uninstall could break your DNS system. " -"Please disable or replace DNSSEC key master first." -msgstr "" - -#: ipaserver/plugins/server.py:506 -msgid "Deleting this server will leave your installation without a DNS." -msgstr "" - -#: ipaserver/plugins/server.py:519 -msgid "" -"Deleting this server is not allowed as it would leave your installation " -"without a KRA." -msgstr "" - -#: ipaserver/plugins/server.py:529 -msgid "" -"Deleting this server is not allowed as it would leave your installation " -"without a CA." -msgstr "" - -#: ipaserver/plugins/server.py:544 -msgid "Ignoring these warnings and proceeding with removal" -msgstr "" - -#: ipaserver/plugins/server.py:594 -#, python-format -msgid "" -"Failed to clean memberPrincipal %(principal)s from s4u2proxy entry %(dn)s: " -"%(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:615 -#, python-format -msgid "Failed to clean up DNA hostname entries for %(master)s: %(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:636 -#, python-format -msgid "Failed to remove server %(master)s from server list: %(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:662 -#, python-format -msgid "Failed to clean up Custodia keys for %(master)s: %(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:700 -#, python-format -msgid "Failed to cleanup server principals/keys: %(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:716 -#, python-format -msgid "Failed to cleanup %(hostname)s DNS entries: %(err)s" -msgstr "" - -#: ipaserver/plugins/server.py:721 -msgid "You may need to manually remove them from the tree" -msgstr "" - -#: ipaserver/plugins/server.py:736 -#, python-format -msgid "Forcing removal of %(hostname)s" -msgstr "" - -#: ipaserver/plugins/server.py:746 -msgid "Ignoring topology connectivity errors." -msgstr "" - -#: ipaserver/plugins/server.py:780 -msgid "Server has already been deleted" -msgstr "" - -#: ipaserver/plugins/server.py:830 -msgid "Agreements deleted" -msgstr "" - -#: ipaserver/plugins/server.py:841 -msgid "Following segments were not deleted:" -msgstr "" - -#: ipaserver/plugins/server.py:895 ipaclient/remote_plugins/2_164/server.py:71 -msgid "Check connection to remote IPA server." -msgstr "" - -#: ipaserver/plugins/server.py:903 ipaserver/plugins/trust.py:1845 -msgid "Remote server name" -msgstr "" - -#: ipaserver/plugins/server.py:904 ipaserver/plugins/trust.py:1846 -msgid "Remote IPA server hostname" -msgstr "" - -#: ipaserver/plugins/server.py:914 ipaserver/plugins/trust.py:1862 -#, python-format -msgid "must be \"%s\"" -msgstr "" - -#: ipaserver/plugins/server.py:926 -msgid "not allowed to perform server connection check" -msgstr "" - -#: ipaserver/plugins/server.py:952 -msgid "Set enabled/hidden state of a server." -msgstr "" - -#: ipaserver/plugins/server.py:958 -msgid "State" -msgstr "" - -#: ipaserver/plugins/server.py:959 -msgid "Server state" -msgstr "" - -#: ipaserver/plugins/server.py:964 -#, python-format -msgid "Changed server state of \"%(value)s\"." -msgstr "" - -#: ipaserver/plugins/server.py:973 -msgid "Cannot hide CA renewal master." -msgstr "" - -#: ipaserver/plugins/server.py:975 -msgid "Cannot hide DNSSec key master." -msgstr "" - -#: ipaserver/plugins/server.py:987 -#, python-format -msgid "Cannot hide last enabled %(name)s server." -msgstr "" - -#: ipaserver/plugins/config.py:41 -msgid "" -"\n" -"Server configuration\n" -"\n" -"Manage the default values that IPA uses and some of its tuning parameters.\n" -"\n" -"NOTES:\n" -"\n" -"The password notification value (--pwdexpnotify) is stored here so it will\n" -"be replicated. It is not currently used to notify users in advance of an\n" -"expiring password.\n" -"\n" -"Some attributes are read-only, provided only for information purposes. " -"These\n" -"include:\n" -"\n" -"Certificate Subject base: the configured certificate subject base,\n" -" e.g. O=EXAMPLE.COM. This is configurable only at install time.\n" -"Password plug-in features: currently defines additional hashes that the\n" -" password will generate (there may be other conditions).\n" -"\n" -"When setting the order list for mapping SELinux users you may need to\n" -"quote the value so it isn't interpreted by the shell.\n" -"\n" -"The maximum length of a hostname in Linux is controlled by\n" -"MAXHOSTNAMELEN in the kernel and defaults to 64. Some other operating\n" -"systems, Solaris for example, allows hostnames up to 255 characters.\n" -"This option will allow flexibility in length but by default limiting\n" -"to the Linux maximum length.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Show basic server configuration:\n" -" ipa config-show\n" -"\n" -" Show all configuration options:\n" -" ipa config-show --all\n" -"\n" -" Change maximum username length to 99 characters:\n" -" ipa config-mod --maxusername=99\n" -"\n" -" Change maximum host name length to 255 characters:\n" -" ipa config-mod --maxhostname=255\n" -"\n" -" Increase default time and size limits for maximum IPA server search:\n" -" ipa config-mod --searchtimelimit=10 --searchrecordslimit=2000\n" -"\n" -" Set default user e-mail domain:\n" -" ipa config-mod --emaildomain=example.com\n" -"\n" -" Enable migration mode to make \"ipa migrate-ds\" command operational:\n" -" ipa config-mod --enable-migration=TRUE\n" -"\n" -" Define SELinux user map order:\n" -" ipa config-mod --ipaselinuxusermaporder='guest_u:s0$xguest_u:s0$user_u:s0-" -"s0:c0.c1023$staff_u:s0-s0:c0.c1023$unconfined_u:s0-s0:c0.c1023'\n" -msgstr "" - -#: ipaserver/plugins/config.py:107 -msgid "must be at least 10" -msgstr "" - -#: ipaserver/plugins/config.py:115 -msgid "configuration options" -msgstr "" - -#: ipaserver/plugins/config.py:150 ipaserver/plugins/config.py:151 -msgid "Configuration" -msgstr "" - -#: ipaserver/plugins/config.py:156 ipaclient/remote_plugins/2_114/config.py:73 -msgid "Maximum username length" -msgstr "" - -#: ipaserver/plugins/config.py:162 -msgid "Maximum hostname length" -msgstr "" - -#: ipaserver/plugins/config.py:167 ipaclient/remote_plugins/2_114/config.py:77 -msgid "Home directory base" -msgstr "" - -#: ipaserver/plugins/config.py:168 ipaclient/remote_plugins/2_114/config.py:78 -msgid "Default location of home directories" -msgstr "" - -#: ipaserver/plugins/config.py:172 ipaclient/remote_plugins/2_114/config.py:82 -msgid "Default shell" -msgstr "" - -#: ipaserver/plugins/config.py:173 ipaclient/remote_plugins/2_114/config.py:83 -msgid "Default shell for new users" -msgstr "" - -#: ipaserver/plugins/config.py:177 ipaclient/remote_plugins/2_114/config.py:87 -msgid "Default users group" -msgstr "" - -#: ipaserver/plugins/config.py:178 ipaclient/remote_plugins/2_114/config.py:88 -msgid "Default group for new users" -msgstr "" - -#: ipaserver/plugins/config.py:182 ipaserver/plugins/config.py:183 -msgid "Default e-mail domain" -msgstr "" - -#: ipaserver/plugins/config.py:187 ipaclient/remote_plugins/2_114/config.py:97 -msgid "Search time limit" -msgstr "" - -#: ipaserver/plugins/config.py:188 ipaclient/remote_plugins/2_156/config.py:98 -msgid "Maximum amount of time (seconds) for a search (-1 or 0 is unlimited)" -msgstr "" - -#: ipaserver/plugins/config.py:194 ipaclient/remote_plugins/2_114/config.py:102 -msgid "Search size limit" -msgstr "" - -#: ipaserver/plugins/config.py:195 ipaclient/remote_plugins/2_156/config.py:103 -msgid "Maximum number of records to search (-1 or 0 is unlimited)" -msgstr "" - -#: ipaserver/plugins/config.py:199 ipaclient/remote_plugins/2_114/config.py:107 -msgid "User search fields" -msgstr "" - -#: ipaserver/plugins/config.py:200 ipaclient/remote_plugins/2_114/config.py:108 -msgid "A comma-separated list of fields to search in when searching for users" -msgstr "" - -#: ipaserver/plugins/config.py:204 ipaclient/remote_plugins/2_114/config.py:112 -msgid "Group search fields" -msgstr "" - -#: ipaserver/plugins/config.py:205 ipaclient/remote_plugins/2_114/config.py:113 -msgid "A comma-separated list of fields to search in when searching for groups" -msgstr "" - -#: ipaserver/plugins/config.py:209 ipaserver/plugins/config.py:210 -msgid "Enable migration mode" -msgstr "" - -#: ipaserver/plugins/config.py:214 ipaclient/remote_plugins/2_114/config.py:121 -msgid "Certificate Subject base" -msgstr "" - -#: ipaserver/plugins/config.py:215 ipaclient/remote_plugins/2_114/config.py:122 -msgid "Base for certificate subjects (OU=Test,O=Example)" -msgstr "" - -#: ipaserver/plugins/config.py:220 ipaclient/remote_plugins/2_114/config.py:127 -msgid "Default group objectclasses" -msgstr "" - -#: ipaserver/plugins/config.py:221 ipaclient/remote_plugins/2_114/config.py:128 -msgid "Default group objectclasses (comma-separated list)" -msgstr "" - -#: ipaserver/plugins/config.py:225 ipaclient/remote_plugins/2_114/config.py:133 -msgid "Default user objectclasses" -msgstr "" - -#: ipaserver/plugins/config.py:226 ipaclient/remote_plugins/2_114/config.py:134 -msgid "Default user objectclasses (comma-separated list)" -msgstr "" - -#: ipaserver/plugins/config.py:230 ipaclient/remote_plugins/2_114/config.py:138 -msgid "Password Expiration Notification (days)" -msgstr "" - -#: ipaserver/plugins/config.py:231 ipaclient/remote_plugins/2_114/config.py:139 -msgid "Number of days's notice of impending password expiration" -msgstr "" - -#: ipaserver/plugins/config.py:236 ipaclient/remote_plugins/2_114/config.py:145 -msgid "Password plugin features" -msgstr "" - -#: ipaserver/plugins/config.py:237 ipaclient/remote_plugins/2_114/config.py:146 -msgid "Extra hashes to generate in password plug-in" -msgstr "" - -#: ipaserver/plugins/config.py:243 ipaclient/remote_plugins/2_114/config.py:150 -msgid "SELinux user map order" -msgstr "" - -#: ipaserver/plugins/config.py:244 ipaclient/remote_plugins/2_114/config.py:151 -msgid "Order in increasing priority of SELinux users, delimited by $" -msgstr "" - -#: ipaserver/plugins/config.py:247 ipaclient/remote_plugins/2_114/config.py:156 -msgid "Default SELinux user" -msgstr "" - -#: ipaserver/plugins/config.py:248 ipaclient/remote_plugins/2_114/config.py:157 -msgid "Default SELinux user when no match is found in SELinux map rule" -msgstr "" - -#: ipaserver/plugins/config.py:252 ipaclient/remote_plugins/2_114/config.py:163 -msgid "Default PAC types" -msgstr "" - -#: ipaserver/plugins/config.py:253 ipaclient/remote_plugins/2_114/config.py:164 -msgid "Default types of PAC supported for services" -msgstr "" - -#: ipaserver/plugins/config.py:259 ipaclient/remote_plugins/2_114/config.py:170 -msgid "Default user authentication types" -msgstr "" - -#: ipaserver/plugins/config.py:260 ipaclient/remote_plugins/2_114/config.py:171 -msgid "Default types of supported user authentication" -msgstr "" - -#: ipaserver/plugins/config.py:266 -msgid "IPA masters" -msgstr "" - -#: ipaserver/plugins/config.py:267 -msgid "List of all IPA masters" -msgstr "" - -#: ipaserver/plugins/config.py:272 -msgid "Hidden IPA masters" -msgstr "" - -#: ipaserver/plugins/config.py:273 -msgid "List of all hidden IPA masters" -msgstr "" - -#: ipaserver/plugins/config.py:278 -msgid "IPA master capable of PKINIT" -msgstr "" - -#: ipaserver/plugins/config.py:279 -msgid "IPA master which can process PKINIT requests" -msgstr "" - -#: ipaserver/plugins/config.py:284 -msgid "IPA CA servers" -msgstr "" - -#: ipaserver/plugins/config.py:285 -msgid "IPA servers configured as certificate authority" -msgstr "" - -#: ipaserver/plugins/config.py:290 -msgid "Hidden IPA CA servers" -msgstr "" - -#: ipaserver/plugins/config.py:291 -msgid "Hidden IPA servers configured as certificate authority" -msgstr "" - -#: ipaserver/plugins/config.py:296 -msgid "IPA CA renewal master" -msgstr "" - -#: ipaserver/plugins/config.py:297 -msgid "Renewal master for IPA certificate authority" -msgstr "" - -#: ipaserver/plugins/config.py:302 ipaserver/plugins/vault.py:978 -msgid "IPA KRA servers" -msgstr "" - -#: ipaserver/plugins/config.py:303 -msgid "IPA servers configured as key recovery agent" -msgstr "" - -#: ipaserver/plugins/config.py:308 -msgid "Hidden IPA KRA servers" -msgstr "" - -#: ipaserver/plugins/config.py:309 -msgid "Hidden IPA servers configured as key recovery agent" -msgstr "" - -#: ipaserver/plugins/config.py:315 ipaserver/plugins/idviews.py:136 +#: ipaserver/plugins/idviews.py:159 ipaserver/plugins/config.py:315 msgid "Domain resolution order" msgstr "" -#: ipaserver/plugins/config.py:316 ipaserver/plugins/idviews.py:137 +#: ipaserver/plugins/idviews.py:160 ipaserver/plugins/config.py:316 msgid "colon-separated list of domains used for short name qualification" msgstr "" -#: ipaserver/plugins/config.py:321 ipaserver/plugins/dns.py:4103 -msgid "IPA DNS servers" +#: ipaserver/plugins/idviews.py:195 +msgid "Add a new ID View." msgstr "" -#: ipaserver/plugins/config.py:322 -msgid "IPA servers configured as domain name server" -msgstr "" - -#: ipaserver/plugins/config.py:327 -msgid "Hidden IPA DNS servers" -msgstr "" - -#: ipaserver/plugins/config.py:328 -msgid "Hidden IPA servers configured as domain name server" -msgstr "" - -#: ipaserver/plugins/config.py:333 ipaserver/plugins/dns.py:4109 -msgid "IPA DNSSec key master" -msgstr "" - -#: ipaserver/plugins/config.py:334 -msgid "DNSec key master" -msgstr "" - -#: ipaserver/plugins/config.py:411 -msgid "Empty domain is not allowed" -msgstr "" - -#: ipaserver/plugins/config.py:419 +#: ipaserver/plugins/idviews.py:196 #, python-format -msgid "Invalid domain name '%(domain)s': %(e)s" +msgid "Added ID View \"%(value)s\"" msgstr "" -#: ipaserver/plugins/config.py:424 +#: ipaserver/plugins/idviews.py:212 +msgid "Delete an ID View." +msgstr "" + +#: ipaserver/plugins/idviews.py:213 #, python-format -msgid "Server has no information about domain '%(domain)s'" +msgid "Deleted ID View \"%(value)s\"" msgstr "" -#: ipaserver/plugins/config.py:431 +#: ipaserver/plugins/idviews.py:225 +msgid "Modify an ID View." +msgstr "" + +#: ipaserver/plugins/idviews.py:226 #, python-format -msgid "Disabled domain '%(domain)s' is not allowed" +msgid "Modified an ID View \"%(value)s\"" msgstr "" -#: ipaserver/plugins/config.py:474 ipaclient/remote_plugins/2_114/config.py:178 -msgid "Modify configuration options." +#: ipaserver/plugins/idviews.py:241 +msgid "Search for an ID View." msgstr "" -#: ipaserver/plugins/config.py:483 -msgid "The group doesn't exist" -msgstr "" - -#: ipaserver/plugins/config.py:501 +#: ipaserver/plugins/idviews.py:242 #, python-format -msgid "attribute \"%s\" not allowed" -msgstr "" - -#: ipaserver/plugins/config.py:521 -msgid "May not be empty" -msgstr "" - -#: ipaserver/plugins/config.py:540 -#, python-format -msgid "%(obj)s default attribute %(attr)s would not be allowed!" -msgstr "" - -#: ipaserver/plugins/config.py:572 -msgid "A list of SELinux users delimited by $ expected" -msgstr "" - -#: ipaserver/plugins/config.py:576 -#, python-format -msgid "SELinux user '%(user)s' is not valid: %(error)s" -msgstr "" - -#: ipaserver/plugins/config.py:588 -msgid "SELinux user map default user not in order list" -msgstr "" - -#: ipaserver/plugins/config.py:624 ipaclient/remote_plugins/2_114/config.py:370 -msgid "Show the current configuration." -msgstr "" - -#: ipaserver/plugins/permission.py:40 -msgid "" -"\n" -"Permissions\n" -msgstr "" - -#: ipaserver/plugins/permission.py:42 -msgid "" -"\n" -"A permission enables fine-grained delegation of rights. A permission is\n" -"a human-readable wrapper around a 389-ds Access Control Rule,\n" -"or instruction (ACI).\n" -"A permission grants the right to perform a specific task such as adding a\n" -"user, modifying a group, etc.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:48 -msgid "" -"\n" -"A permission may not contain other permissions.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:50 -msgid "" -"\n" -"* A permission grants access to read, write, add, delete, read, search,\n" -" or compare.\n" -"* A privilege combines similar permissions (for example all the permissions\n" -" needed to add a user).\n" -"* A role grants a set of privileges to users, groups, hosts or hostgroups.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:56 -msgid "" -"\n" -"A permission is made up of a number of different parts:\n" -"\n" -"1. The name of the permission.\n" -"2. The target of the permission.\n" -"3. The rights granted by the permission.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:62 -msgid "" -"\n" -"Rights define what operations are allowed, and may be one or more\n" -"of the following:\n" -"1. write - write one or more attributes\n" -"2. read - read one or more attributes\n" -"3. search - search on one or more attributes\n" -"4. compare - compare one or more attributes\n" -"5. add - add a new entry to the tree\n" -"6. delete - delete an existing entry\n" -"7. all - all permissions are granted\n" -msgstr "" - -#: ipaserver/plugins/permission.py:72 -msgid "" -"\n" -"Note the distinction between attributes and entries. The permissions are\n" -"independent, so being able to add a user does not mean that the user will\n" -"be editable.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:76 -msgid "" -"\n" -"There are a number of allowed targets:\n" -"1. subtree: a DN; the permission applies to the subtree under this DN\n" -"2. target filter: an LDAP filter\n" -"3. target: DN with possible wildcards, specifies entries permission applies " -"to\n" -msgstr "" - -#: ipaserver/plugins/permission.py:81 -msgid "" -"\n" -"Additionally, there are the following convenience options.\n" -"Setting one of these options will set the corresponding attribute(s).\n" -"1. type: a type of object (user, group, etc); sets subtree and target " -"filter.\n" -"2. memberof: apply to members of a group; sets target filter\n" -"3. targetgroup: grant access to modify a specific group (such as granting\n" -" the rights to manage group membership); sets target.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:88 -msgid "" -"\n" -"Managed permissions\n" -msgstr "" - -#: ipaserver/plugins/permission.py:90 -msgid "" -"\n" -"Permissions that come with IPA by default can be so-called \"managed\"\n" -"permissions. These have a default set of attributes they apply to,\n" -"but the administrator can add/remove individual attributes to/from the set.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:94 -msgid "" -"\n" -"Deleting or renaming a managed permission, as well as changing its target,\n" -"is not allowed.\n" -msgstr "" - -#: ipaserver/plugins/permission.py:99 -msgid "" -"\n" -" Add a permission that grants the creation of users:\n" -" ipa permission-add --type=user --permissions=add \"Add Users\"\n" -msgstr "" - -#: ipaserver/plugins/permission.py:102 -msgid "" -"\n" -" Add a permission that grants the ability to manage group membership:\n" -" ipa permission-add --attrs=member --permissions=write --type=group " -"\"Manage Group Members\"\n" -msgstr "" - -#: ipaserver/plugins/permission.py:129 -msgid "must be enclosed in parentheses" -msgstr "" - -#: ipaserver/plugins/permission.py:149 -#, python-format -msgid "\"%s\" is not an object type" -msgstr "" - -#: ipaserver/plugins/permission.py:151 ipaserver/plugins/permission.py:895 -#, python-format -msgid "\"%s\" is not a valid permission type" -msgstr "" - -#: ipaserver/plugins/permission.py:169 -msgid "Permission flags" -msgstr "" - -#: ipaserver/plugins/permission.py:180 -msgid "permission" -msgstr "" - -#: ipaserver/plugins/permission.py:181 -msgid "permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:236 -msgid "Permission name" -msgstr "" - -#: ipaserver/plugins/permission.py:245 -msgid "Granted rights" -msgstr "" - -#: ipaserver/plugins/permission.py:246 -msgid "Rights to grant (read, search, compare, write, add, delete, all)" -msgstr "" - -#: ipaserver/plugins/permission.py:253 -msgid "Effective attributes" -msgstr "" - -#: ipaserver/plugins/permission.py:254 -msgid "All attributes to which the permission applies" -msgstr "" - -#: ipaserver/plugins/permission.py:259 -msgid "Included attributes" -msgstr "" - -#: ipaserver/plugins/permission.py:260 -msgid "User-specified attributes to which the permission applies" -msgstr "" - -#: ipaserver/plugins/permission.py:265 -msgid "Excluded attributes" -msgstr "" - -#: ipaserver/plugins/permission.py:266 -msgid "" -"User-specified attributes to which the permission explicitly does not apply" -msgstr "" - -#: ipaserver/plugins/permission.py:272 -msgid "Default attributes" -msgstr "" - -#: ipaserver/plugins/permission.py:273 -msgid "Attributes to which the permission applies by default" -msgstr "" - -#: ipaserver/plugins/permission.py:279 ipaserver/plugins/permission.py:280 -msgid "Bind rule type" -msgstr "" - -#: ipaserver/plugins/permission.py:290 -msgid "Subtree to apply permissions to" -msgstr "" - -#: ipaserver/plugins/permission.py:298 ipaserver/plugins/permission.py:299 -msgid "Extra target filter" -msgstr "" - -#: ipaserver/plugins/permission.py:305 -msgid "Raw target filter" -msgstr "" - -#: ipaserver/plugins/permission.py:306 -msgid "All target filters, including those implied by type and memberof" -msgstr "" - -#: ipaserver/plugins/permission.py:313 -msgid "Target DN" -msgstr "" - -#: ipaserver/plugins/permission.py:314 -msgid "" -"Optional DN to apply the permission to (must be in the subtree, but may not " -"yet exist)" -msgstr "" - -#: ipaserver/plugins/permission.py:321 -msgid "Target DN subtree" -msgstr "" - -#: ipaserver/plugins/permission.py:322 -msgid "" -"Optional DN subtree where an entry can be moved to (must be in the subtree, " -"but may not yet exist)" -msgstr "" - -#: ipaserver/plugins/permission.py:329 -msgid "Origin DN subtree" -msgstr "" - -#: ipaserver/plugins/permission.py:330 -msgid "" -"Optional DN subtree from where an entry can be moved (must be in the " -"subtree, but may not yet exist)" -msgstr "" - -#: ipaserver/plugins/permission.py:335 -msgid "Member of group" -msgstr "" - -#: ipaserver/plugins/permission.py:336 -msgid "Target members of a group (sets memberOf targetfilter)" -msgstr "" - -#: ipaserver/plugins/permission.py:341 -msgid "User group to apply permissions to (sets target)" -msgstr "" - -#: ipaserver/plugins/permission.py:347 -msgid "Type of IPA object (sets subtree and objectClass targetfilter)" -msgstr "" - -#: ipaserver/plugins/permission.py:353 -#, python-format -msgid "Deprecated; use %s" -msgstr "" - -#: ipaserver/plugins/permission.py:370 -#, python-format -msgid "Permission with unknown flag %s may not be modified or removed" -msgstr "" - -#: ipaserver/plugins/permission.py:374 -msgid "A SYSTEM permission may not be modified or removed" -msgstr "" - -#: ipaserver/plugins/permission.py:622 -#, python-format -msgid "Entry %s not found" -msgstr "" - -#: ipaserver/plugins/permission.py:714 -#, python-format -msgid "The ACI for permission %(name)s was not found in %(dn)s " -msgstr "" - -#: ipaserver/plugins/permission.py:818 -msgid "" -"cannot specify full target filter and extra target filter simultaneously" -msgstr "" - -#: ipaserver/plugins/permission.py:841 -#, python-format -msgid "option was renamed; use %s" -msgstr "" - -#: ipaserver/plugins/permission.py:845 -#, python-format -msgid "Cannot use %(old_name)s with %(new_name)s" -msgstr "" - -#: ipaserver/plugins/permission.py:859 ipaserver/plugins/permission.py:874 -#, python-format -msgid "%s: group not found" -msgstr "" - -#: ipaserver/plugins/permission.py:869 -msgid "target and targetgroup are mutually exclusive" -msgstr "" - -#: ipaserver/plugins/permission.py:890 -msgid "subtree and type are mutually exclusive" -msgstr "" - -#: ipaserver/plugins/permission.py:928 -msgid "Bad search filter" -msgstr "" - -#: ipaserver/plugins/permission.py:938 -#, python-format -msgid "Entry %s does not exist" -msgstr "" - -#: ipaserver/plugins/permission.py:947 -msgid "" -"there must be at least one target entry specifier (e.g. target, " -"targetfilter, attrs)" -msgstr "" - -#: ipaserver/plugins/permission.py:957 -msgid "Add a system permission without an ACI (internal command)" -msgstr "" - -#: ipaserver/plugins/permission.py:959 ipaserver/plugins/permission.py:987 -#, python-format -msgid "Added permission \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/permission.py:985 -msgid "Add a new permission." -msgstr "" - -#: ipaserver/plugins/permission.py:1012 -msgid "attrs and included attributes are mutually exclusive" -msgstr "" - -#: ipaserver/plugins/permission.py:1044 -#, python-format -msgid "Cannot store permission ACI to %s" -msgstr "" - -#: ipaserver/plugins/permission.py:1053 -msgid "Delete a permission." -msgstr "" - -#: ipaserver/plugins/permission.py:1055 -#, python-format -msgid "Deleted permission \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/permission.py:1061 -msgid "force delete of SYSTEM permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:1075 -msgid "cannot delete managed permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:1081 -#, python-format -msgid "ACI of permission %s was not found" -msgstr "" - -#: ipaserver/plugins/permission.py:1088 -msgid "Modify a permission." -msgstr "" - -#: ipaserver/plugins/permission.py:1090 -#, python-format -msgid "Modified permission \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/permission.py:1123 -msgid "cannot rename managed permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:1130 ipaserver/plugins/permission.py:1134 -msgid "not modifiable on managed permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:1141 -msgid "only available on managed permissions" -msgstr "" - -#: ipaserver/plugins/permission.py:1148 ipaserver/plugins/permission.py:1267 -msgid "attrs and included/excluded attributes are mutually exclusive" -msgstr "" - -#: ipaserver/plugins/permission.py:1159 -msgid "cannot set bindtype for a permission that is assigned to a privilege" -msgstr "" - -#: ipaserver/plugins/permission.py:1253 -msgid "Search for permissions." -msgstr "" - -#: ipaserver/plugins/permission.py:1256 -#, python-format -msgid "%(count)d permission matched" -msgid_plural "%(count)d permissions matched" +msgid "%(count)d ID View matched" +msgid_plural "%(count)d ID Views matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/permission.py:1386 -msgid "Display information about a permission." +#: ipaserver/plugins/idviews.py:248 +msgid "Display information about an ID View." msgstr "" -#: ipaserver/plugins/permission.py:1396 -msgid "Add members to a permission." +#: ipaserver/plugins/idviews.py:253 +msgid "Enumerate all the hosts the view applies to." msgstr "" -#: ipaserver/plugins/permission.py:1408 -msgid "Remove members from a permission." +#: ipaserver/plugins/idviews.py:352 +msgid "Default Trust View cannot be applied on hosts" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:42 +#: ipaserver/plugins/idviews.py:380 ipaserver/plugins/idviews.py:413 +msgid "not found" +msgstr "" + +#: ipaserver/plugins/idviews.py:394 +msgid "ID View cannot be applied to IPA master" +msgstr "" + +#: ipaserver/plugins/idviews.py:411 +msgid "ID View already applied" +msgstr "" + +#: ipaserver/plugins/idviews.py:431 +msgid "value" +msgstr "" + +#: ipaserver/plugins/idviews.py:440 msgid "" -"\n" -"SELinux User Mapping\n" -"\n" -"Map IPA users to SELinux users by host.\n" -"\n" -"Hosts, hostgroups, users and groups can be either defined within\n" -"the rule or it may point to an existing HBAC rule. When using\n" -"--hbacrule option to selinuxusermap-find an exact match is made on the\n" -"HBAC rule name, so only one or zero entries will be returned.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Create a rule, \"test1\", that sets all users to xguest_u:s0 on the host " -"\"server\":\n" -" ipa selinuxusermap-add --usercat=all --selinuxuser=xguest_u:s0 test1\n" -" ipa selinuxusermap-add-host --hosts=server.example.com test1\n" -"\n" -" Create a rule, \"test2\", that sets all users to guest_u:s0 and uses an " -"existing HBAC rule for users and hosts:\n" -" ipa selinuxusermap-add --usercat=all --hbacrule=webserver --" -"selinuxuser=guest_u:s0 test2\n" -"\n" -" Display the properties of a rule:\n" -" ipa selinuxusermap-show test2\n" -"\n" -" Create a rule for a specific user. This sets the SELinux context for\n" -" user john to unconfined_u:s0-s0:c0.c1023 on any machine:\n" -" ipa selinuxusermap-add --hostcat=all --selinuxuser=unconfined_u:s0-s0:c0." -"c1023 john_unconfined\n" -" ipa selinuxusermap-add-user --users=john john_unconfined\n" -"\n" -" Disable a rule:\n" -" ipa selinuxusermap-disable test1\n" -"\n" -" Enable a rule:\n" -" ipa selinuxusermap-enable test1\n" -"\n" -" Find a rule referencing a specific HBAC rule:\n" -" ipa selinuxusermap-find --hbacrule=allow_some\n" -"\n" -" Remove a rule:\n" -" ipa selinuxusermap-del john_unconfined\n" -"\n" -"SEEALSO:\n" -"\n" -" The list controlling the order in which the SELinux user map is applied\n" -" and the default SELinux user are available in the config-show command.\n" +"Applies ID View to specified hosts or current members of specified " +"hostgroups. If any other ID View is applied to the host, it is overridden." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:89 -msgid "HBAC rule and local members cannot both be set" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:128 -msgid "Invalid SELinux user name, must match {}" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:142 -#, python-brace-format -msgid "Invalid MLS value, must match {mls}, where max level {mls_max}" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:147 -#, python-brace-format -msgid "Invalid MCS value, must match {mcs}, where max category {mcs_max}" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:161 -msgid "SELinux user map list not found in configuration" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:166 +#: ipaserver/plugins/idviews.py:444 #, python-format -msgid "SELinux user %(user)s not found in ordering list (in config)" +msgid "ID View applied to %i host." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:176 -msgid "SELinux User Map rule" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:177 -msgid "SELinux User Map rules" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:233 -msgid "SELinux User Maps" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:234 -msgid "SELinux User Map" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:244 -msgid "SELinux User" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:248 ipaserver/plugins/hbacrule.py:202 -msgid "HBAC Rule" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:249 -msgid "HBAC Rule that defines the users, groups and hostgroups" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:276 ipaserver/plugins/group.py:314 -#: ipaserver/plugins/hbacrule.py:264 ipaserver/plugins/internal.py:868 -#: ipaserver/plugins/internal.py:1178 ipaserver/plugins/sudorule.py:280 -#: ipaserver/plugins/caacl.py:224 -msgid "User Groups" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:284 ipaserver/plugins/hbacrule.py:272 -#: ipaserver/plugins/hostgroup.py:177 ipaserver/plugins/internal.py:1062 -#: ipaserver/plugins/internal.py:1152 ipaserver/plugins/sudorule.py:293 -#: ipaserver/plugins/caacl.py:232 -msgid "Host Groups" -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:309 +#: ipaserver/plugins/idviews.py:445 #, python-format -msgid "HBAC rule %(rule)s not found" +msgid "ID View applied to %i hosts." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:328 -msgid "Create a new SELinux User Map." +#: ipaserver/plugins/idviews.py:452 +msgid "Hosts to apply the ID View to" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:330 +#: ipaserver/plugins/idviews.py:457 +msgid "" +"Hostgroups to whose hosts apply the ID View to. Please note that view is not " +"applied automatically to any hosts added to the hostgroup after running the " +"idview-apply command." +msgstr "" + +#: ipaserver/plugins/idviews.py:460 ipaserver/plugins/idviews.py:503 +msgid "hostgroups" +msgstr "" + +#: ipaserver/plugins/idviews.py:468 +msgid "Hosts that this ID View was applied to." +msgstr "" + +#: ipaserver/plugins/idviews.py:472 +msgid "Hosts or hostgroups that this ID View could not be applied to." +msgstr "" + +#: ipaserver/plugins/idviews.py:477 +msgid "Number of hosts the ID View was applied to:" +msgstr "" + +#: ipaserver/plugins/idviews.py:484 +msgid "" +"Clears ID View from specified hosts or current members of specified " +"hostgroups." +msgstr "" + +#: ipaserver/plugins/idviews.py:487 #, python-format -msgid "Added SELinux User Map \"%(value)s\"" +msgid "ID View cleared from %i host." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:365 -msgid "Delete a SELinux User Map." -msgstr "" - -#: ipaserver/plugins/selinuxusermap.py:367 +#: ipaserver/plugins/idviews.py:488 #, python-format -msgid "Deleted SELinux User Map \"%(value)s\"" +msgid "ID View cleared from %i hosts." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:373 -msgid "Modify a SELinux User Map." +#: ipaserver/plugins/idviews.py:495 +msgid "Hosts to clear (any) ID View from." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:375 +#: ipaserver/plugins/idviews.py:500 +msgid "" +"Hostgroups whose hosts should have ID Views cleared. Note that view is not " +"cleared automatically from any host added to the hostgroup after running " +"idview-unapply command." +msgstr "" + +#: ipaserver/plugins/idviews.py:511 +msgid "Hosts that ID View was cleared from." +msgstr "" + +#: ipaserver/plugins/idviews.py:515 +msgid "Hosts or hostgroups that ID View could not be cleared from." +msgstr "" + +#: ipaserver/plugins/idviews.py:520 +msgid "Number of hosts that had a ID View was unset:" +msgstr "" + +#: ipaserver/plugins/idviews.py:556 +msgid "" +"You are trying to reference a magic private group which is not allowed to be " +"overridden. Try overriding the GID attribute of the corresponding user " +"instead." +msgstr "" + +#: ipaserver/plugins/idviews.py:594 +msgid "IPA object" +msgstr "" + +#: ipaserver/plugins/idviews.py:595 +msgid "" +"system IPA objects (e.g. system groups, user private groups) cannot be " +"overridden" +msgstr "" + +#: ipaserver/plugins/idviews.py:689 #, python-format -msgid "Modified SELinux User Map \"%(value)s\"" +msgid "Anchor '%(anchor)s' could not be resolved." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:445 -msgid "Search for SELinux User Maps." +#: ipaserver/plugins/idviews.py:736 +msgid "Anchor to override" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:448 +#: ipaserver/plugins/idviews.py:804 +msgid "Default Trust View cannot contain IPA users" +msgstr "" + +#: ipaserver/plugins/idviews.py:848 +msgid "Add a new ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:849 #, python-format -msgid "%(count)d SELinux User Map matched" -msgid_plural "%(count)d SELinux User Maps matched" +msgid "Added ID override \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idviews.py:864 +msgid "Delete an ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:865 +#, python-format +msgid "Deleted ID override \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idviews.py:888 +msgid "Modify an ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:889 +#, python-format +msgid "Modified an ID override \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idviews.py:896 +msgid "ID override" +msgstr "" + +#: ipaserver/plugins/idviews.py:897 +msgid "ID overrides cannot be renamed" +msgstr "" + +#: ipaserver/plugins/idviews.py:909 +msgid "Search for an ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:910 +#, python-format +msgid "%(count)d ID override matched" +msgid_plural "%(count)d ID overrides matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/selinuxusermap.py:477 -msgid "Display the properties of a SELinux User Map rule." +#: ipaserver/plugins/idviews.py:922 +msgid "Display information about an ID override." msgstr "" -#: ipaserver/plugins/selinuxusermap.py:488 -msgid "Enable an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:934 ipaserver/plugins/idviews.py:938 +msgid "User ID override" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:490 -#, python-format -msgid "Enabled SELinux User Map \"%(value)s\"" +#: ipaserver/plugins/idviews.py:935 ipaserver/plugins/idviews.py:937 +msgid "User ID overrides" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:518 -msgid "Disable an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:984 ipaserver/plugins/baseuser.py:205 +msgid "User login" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:520 -#, python-format -msgid "Disabled SELinux User Map \"%(value)s\"" +#: ipaserver/plugins/idviews.py:989 ipaserver/plugins/baseuser.py:294 +msgid "UID" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:548 -msgid "Add users and groups to an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:990 +msgid "User ID Number" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:563 ipaserver/plugins/hbacrule.py:518 -#: ipaserver/plugins/sudorule.py:593 ipaserver/plugins/caacl.py:397 -msgid "users cannot be added when user category='all'" +#: ipaserver/plugins/idviews.py:994 ipaserver/plugins/baseuser.py:238 +msgid "GECOS" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:572 -msgid "Remove users and groups from an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:997 ipaserver/plugins/idviews.py:1092 +#: ipaserver/plugins/baseuser.py:299 ipaserver/plugins/group.py:334 +msgid "GID" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:581 -msgid "Add target hosts and hostgroups to an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:998 ipaserver/plugins/idviews.py:1093 +#: ipaserver/plugins/baseuser.py:300 ipaclient/remote_plugins/2_114/user.py:153 +msgid "Group ID Number" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:596 ipaserver/plugins/hbacrule.py:549 -#: ipaserver/plugins/sudorule.py:647 ipaserver/plugins/caacl.py:429 -msgid "hosts cannot be added when host category='all'" +#: ipaserver/plugins/idviews.py:1003 ipaserver/plugins/baseuser.py:235 +msgid "Home directory" msgstr "" -#: ipaserver/plugins/selinuxusermap.py:605 -msgid "Remove target hosts and hostgroups from an SELinux User Map rule." +#: ipaserver/plugins/idviews.py:1007 ipaserver/plugins/baseuser.py:244 +msgid "Login shell" msgstr "" -#: ipaserver/plugins/hbacsvcgroup.py:33 -msgid "" -"\n" -"HBAC Service Groups\n" -"\n" -"HBAC service groups can contain any number of individual services,\n" -"or \"members\". Every group must have a description.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new HBAC service group:\n" -" ipa hbacsvcgroup-add --desc=\"login services\" login\n" -"\n" -" Add members to an HBAC service group:\n" -" ipa hbacsvcgroup-add-member --hbacsvcs=sshd --hbacsvcs=login login\n" -"\n" -" Display information about a named group:\n" -" ipa hbacsvcgroup-show login\n" -"\n" -" Delete an HBAC service group:\n" -" ipa hbacsvcgroup-del login\n" +#: ipaserver/plugins/idviews.py:1014 ipaserver/plugins/host.py:565 +#: ipaserver/plugins/baseuser.py:348 ipaclient/remote_plugins/2_114/host.py:159 +msgid "SSH public key" msgstr "" -#: ipaserver/plugins/hbacsvcgroup.py:64 -msgid "HBAC service group" +#: ipaserver/plugins/idviews.py:1021 ipaserver/plugins/certmap.py:606 +#: ipaserver/plugins/baseuser.py:399 ipaserver/plugins/baseuser.py:839 +msgid "Base-64 encoded user certificate" msgstr "" -#: ipaserver/plugins/hbacsvcgroup.py:65 -msgid "HBAC service groups" +#: ipaserver/plugins/idviews.py:1057 ipaserver/plugins/idviews.py:1061 +msgid "Group ID override" msgstr "" -#: ipaserver/plugins/hbacsvcgroup.py:108 ipaserver/plugins/hbacrule.py:290 -msgid "HBAC Service Groups" +#: ipaserver/plugins/idviews.py:1058 ipaserver/plugins/idviews.py:1060 +msgid "Group ID overrides" msgstr "" -#: ipaserver/plugins/hbacsvcgroup.py:109 -msgid "HBAC Service Group" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:114 -msgid "Service group name" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:121 -msgid "HBAC service group description" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:129 -msgid "Add a new HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:131 -#, python-format -msgid "Added HBAC service group \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:137 -msgid "Delete an HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:139 -#, python-format -msgid "Deleted HBAC service group \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:145 -msgid "Modify an HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:147 -#, python-format -msgid "Modified HBAC service group \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:153 -msgid "Search for an HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:156 -#, python-format -msgid "%(count)d HBAC service group matched" -msgid_plural "%(count)d HBAC service groups matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/hbacsvcgroup.py:163 -msgid "Display information about an HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:169 -msgid "Add members to an HBAC service group." -msgstr "" - -#: ipaserver/plugins/hbacsvcgroup.py:175 -msgid "Remove members from an HBAC service group." -msgstr "" - -#: ipaserver/plugins/misc.py:24 ipaclient/remote_plugins/2_114/misc.py:19 -msgid "" -"\n" -"Misc plug-ins\n" -msgstr "" - -#: ipaserver/plugins/dogtag.py:1315 -msgid "Failed to authenticate to CA REST API" -msgstr "" - -#: ipaserver/plugins/dogtag.py:1355 -msgid "REST API is not logged in." -msgstr "" - -#: ipaserver/plugins/dogtag.py:1377 -#, python-format -msgid "Non-2xx response from CA REST API: %(status)d. %(explanation)s" -msgstr "" - -#: ipaserver/plugins/dogtag.py:1403 -msgid "Unable to communicate with CMS" -msgstr "" - -#: ipaserver/plugins/dogtag.py:1681 ipaserver/plugins/dogtag.py:2188 -#: ipaserver/plugins/dogtag.py:2198 -msgid "Response from CA was not valid JSON" -msgstr "" - -#: ipaserver/plugins/group.py:62 -msgid "" -"\n" -"Groups of users\n" -"\n" -"Manage groups of users, groups, or services. By default, new groups are " -"POSIX\n" -"groups. You can add the --nonposix option to the group-add command to mark " -"a\n" -"new group as non-POSIX. You can use the --posix argument with the group-mod\n" -"command to convert a non-POSIX group into a POSIX group. POSIX groups cannot " -"be\n" -"converted to non-POSIX groups.\n" -"\n" -"Every group must have a description.\n" -"\n" -"POSIX groups must have a Group ID (GID) number. Changing a GID is\n" -"supported but can have an impact on your file permissions. It is not " -"necessary\n" -"to supply a GID when creating a group. IPA will generate one automatically\n" -"if it is not provided.\n" -"\n" -"Groups members can be users, other groups, and Kerberos services. In POSIX\n" -"environments only users will be visible as group members, but nested groups " -"and\n" -"groups of services can be used for IPA management purposes.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new group:\n" -" ipa group-add --desc='local administrators' localadmins\n" -"\n" -" Add a new non-POSIX group:\n" -" ipa group-add --nonposix --desc='remote administrators' remoteadmins\n" -"\n" -" Convert a non-POSIX group to posix:\n" -" ipa group-mod --posix remoteadmins\n" -"\n" -" Add a new POSIX group with a specific Group ID number:\n" -" ipa group-add --gid=500 --desc='unix admins' unixadmins\n" -"\n" -" Add a new POSIX group and let IPA assign a Group ID number:\n" -" ipa group-add --desc='printer admins' printeradmins\n" -"\n" -" Remove a group:\n" -" ipa group-del unixadmins\n" -"\n" -" To add the \"remoteadmins\" group to the \"localadmins\" group:\n" -" ipa group-add-member --groups=remoteadmins localadmins\n" -"\n" -" Add multiple users to the \"localadmins\" group:\n" -" ipa group-add-member --users=test1 --users=test2 localadmins\n" -"\n" -" To add Kerberos services to the \"printer admins\" group:\n" -" ipa group-add-member --services=CUPS/some.host printeradmins\n" -"\n" -" Remove a user from the \"localadmins\" group:\n" -" ipa group-remove-member --users=test2 localadmins\n" -"\n" -" Display information about a named group.\n" -" ipa group-show localadmins\n" -"\n" -"Group membership managers are users or groups that can add members to a\n" -"group or remove members from a group.\n" -"\n" -" Allow user \"test2\" to add or remove members from group \"localadmins\":\n" -" ipa group-add-member-manager --users=test2 localadmins\n" -"\n" -" Revoke membership management rights for user \"test2\" from \"localadmins" -"\":\n" -" ipa group-remove-member-manager --users=test2 localadmins\n" -"\n" -"External group membership is designed to allow users from trusted domains\n" -"to be mapped to local POSIX groups in order to actually use IPA resources.\n" -"External members should be added to groups that specifically created as\n" -"external and non-POSIX. Such group later should be included into one of " -"POSIX\n" -"groups.\n" -"\n" -"An external group member is currently a Security Identifier (SID) as defined " -"by\n" -"the trusted domain. When adding external group members, it is possible to\n" -"specify them in either SID, or DOM\\name, or name@domain format. IPA will " -"attempt\n" -"to resolve passed name to SID with the use of Global Catalog of the trusted " -"domain.\n" -"\n" -"Example:\n" -"\n" -"1. Create group for the trusted domain admins' mapping and their local POSIX " -"group:\n" -"\n" -" ipa group-add --desc=' admins external map' ad_admins_external " -"--external\n" -" ipa group-add --desc=' admins' ad_admins\n" -"\n" -"2. Add security identifier of Domain Admins of the to the " -"ad_admins_external\n" -" group:\n" -"\n" -" ipa group-add-member ad_admins_external --external 'AD\\Domain Admins'\n" -"\n" -"3. Allow members of ad_admins_external group to be associated with ad_admins " -"POSIX group:\n" -"\n" -" ipa group-add-member ad_admins --groups ad_admins_external\n" -"\n" -"4. List members of external members of ad_admins_external group to see their " -"SIDs:\n" -"\n" -" ipa group-show ad_admins_external\n" -msgstr "" - -#: ipaserver/plugins/group.py:165 ipaclient/remote_plugins/2_114/group.py:304 -msgid "External member" -msgstr "" - -#: ipaserver/plugins/group.py:166 ipaclient/remote_plugins/2_114/group.py:305 -msgid "Members of a trusted domain in DOM\\name or name@domain form" -msgstr "" - -#: ipaserver/plugins/group.py:182 ipaserver/plugins/hostgroup.py:95 -#: ipaclient/frontend.py:71 -msgid "Failed member manager" -msgstr "" - -#: ipaserver/plugins/group.py:194 -msgid "groups" -msgstr "" - -#: ipaserver/plugins/group.py:315 -msgid "User Group" -msgstr "" - -#: ipaserver/plugins/group.py:323 ipaserver/plugins/idviews.py:1047 +#: ipaserver/plugins/idviews.py:1087 ipaserver/plugins/group.py:323 msgid "Group name" msgstr "" -#: ipaserver/plugins/group.py:330 ipaserver/plugins/sudocmdgroup.py:131 -msgid "Group description" +#: ipaserver/plugins/idviews.py:1102 +msgid "Add one or more certificates to the idoverrideuser entry" msgstr "" -#: ipaserver/plugins/group.py:335 ipaclient/remote_plugins/2_114/group.py:120 -msgid "GID (use this option to set it manually)" -msgstr "" - -#: ipaserver/plugins/group.py:344 ipaclient/remote_plugins/2_114/group.py:197 -msgid "Create a new group." -msgstr "" - -#: ipaserver/plugins/group.py:347 +#: ipaserver/plugins/idviews.py:1103 #, python-format -msgid "Added group \"%(value)s\"" +msgid "Added certificates to idoverrideuser \"%(value)s\"" msgstr "" -#: ipaserver/plugins/group.py:352 ipaclient/remote_plugins/2_114/group.py:238 -msgid "Create as a non-POSIX group" +#: ipaserver/plugins/idviews.py:1125 +msgid "Remove one or more certificates to the idoverrideuser entry" msgstr "" -#: ipaserver/plugins/group.py:357 ipaclient/remote_plugins/2_114/group.py:244 -msgid "Allow adding external non-IPA members from trusted domains" -msgstr "" - -#: ipaserver/plugins/group.py:370 -msgid "gid cannot be set for external group" -msgstr "" - -#: ipaserver/plugins/group.py:380 ipaclient/remote_plugins/2_114/group.py:366 -msgid "Delete group." -msgstr "" - -#: ipaserver/plugins/group.py:382 +#: ipaserver/plugins/idviews.py:1126 #, python-format -msgid "Deleted group \"%(value)s\"" +msgid "Removed certificates from idoverrideuser \"%(value)s\"" msgstr "" -#: ipaserver/plugins/group.py:396 -msgid "privileged group" +#: ipaserver/plugins/idviews.py:1149 +msgid "Add a new User ID override." msgstr "" -#: ipaserver/plugins/group.py:426 ipaclient/remote_plugins/2_114/group.py:669 -msgid "Modify a group." -msgstr "" - -#: ipaserver/plugins/group.py:429 +#: ipaserver/plugins/idviews.py:1150 #, python-format -msgid "Modified group \"%(value)s\"" +msgid "Added User ID override \"%(value)s\"" msgstr "" -#: ipaserver/plugins/group.py:434 ipaclient/remote_plugins/2_114/group.py:724 -msgid "change to a POSIX group" +#: ipaserver/plugins/idviews.py:1174 +msgid "Delete an User ID override." msgstr "" -#: ipaserver/plugins/group.py:438 ipaclient/remote_plugins/2_114/group.py:730 -msgid "change to support external non-IPA members from trusted domains" -msgstr "" - -#: ipaserver/plugins/group.py:498 ipaclient/remote_plugins/2_114/group.py:436 -msgid "Search for groups." -msgstr "" - -#: ipaserver/plugins/group.py:504 +#: ipaserver/plugins/idviews.py:1175 #, python-format -msgid "%(count)d group matched" -msgid_plural "%(count)d groups matched" +msgid "Deleted User ID override \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idviews.py:1180 +msgid "Modify an User ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:1181 +#, python-format +msgid "Modified an User ID override \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idviews.py:1212 +msgid "Search for an User ID override." +msgstr "" + +#: ipaserver/plugins/idviews.py:1213 +#, python-format +msgid "%(count)d User ID override matched" +msgid_plural "%(count)d User ID overrides matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/group.py:510 ipaclient/remote_plugins/2_114/group.py:481 -msgid "search for private groups" +#: ipaserver/plugins/idviews.py:1236 +msgid "Display information about an User ID override." msgstr "" -#: ipaserver/plugins/group.py:514 ipaclient/remote_plugins/2_114/group.py:487 -msgid "search for POSIX groups" +#: ipaserver/plugins/idviews.py:1248 +msgid "Add a new Group ID override." msgstr "" -#: ipaserver/plugins/group.py:518 ipaclient/remote_plugins/2_114/group.py:493 -msgid "" -"search for groups with support of external non-IPA members from trusted " -"domains" -msgstr "" - -#: ipaserver/plugins/group.py:522 ipaclient/remote_plugins/2_114/group.py:499 -msgid "search for non-POSIX groups" -msgstr "" - -#: ipaserver/plugins/group.py:569 ipaclient/remote_plugins/2_114/group.py:859 -msgid "Display information about a named group." -msgstr "" - -#: ipaserver/plugins/group.py:592 ipaclient/remote_plugins/2_114/group.py:288 -msgid "Add members to a group." -msgstr "" - -#: ipaserver/plugins/group.py:601 ipaserver/plugins/group.py:658 -#: ipaserver/plugins/hbactest.py:402 -msgid "" -"Cannot perform external member validation without Samba 4 support installed. " -"Make sure you have installed server-trust-ad sub-package of IPA on the server" -msgstr "" - -#: ipaserver/plugins/group.py:606 ipaserver/plugins/group.py:663 -#: ipaserver/plugins/trust.py:873 -msgid "" -"Cannot perform join operation without own domain configured. Make sure you " -"have run ipa-adtrust-install on the IPA server first" -msgstr "" - -#: ipaserver/plugins/group.py:637 ipaclient/remote_plugins/2_114/group.py:781 -msgid "Remove members from a group." -msgstr "" - -#: ipaserver/plugins/group.py:694 ipaclient/remote_plugins/2_114/group.py:404 -msgid "Detach a managed group from a user." -msgstr "" - -#: ipaserver/plugins/group.py:697 +#: ipaserver/plugins/idviews.py:1249 #, python-format -msgid "Detached group \"%(value)s\" from user \"%(value)s\"" +msgid "Added Group ID override \"%(value)s\"" msgstr "" -#: ipaserver/plugins/group.py:722 -msgid "not allowed to modify user entries" +#: ipaserver/plugins/idviews.py:1254 +msgid "Delete an Group ID override." msgstr "" -#: ipaserver/plugins/group.py:733 -msgid "not allowed to modify group entries" -msgstr "" - -#: ipaserver/plugins/group.py:753 -msgid "Not a managed group" -msgstr "" - -#: ipaserver/plugins/group.py:775 -msgid "Add users that can manage members of this group." -msgstr "" - -#: ipaserver/plugins/group.py:783 -msgid "Remove users that can manage members of this group." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:39 -msgid "" -"\n" -"Host-based access control\n" -"\n" -"Control who can access what services on what hosts. You\n" -"can use HBAC to control which users or groups can\n" -"access a service, or group of services, on a target host.\n" -"\n" -"You can also specify a category of users and target hosts.\n" -"This is currently limited to \"all\", but might be expanded in the\n" -"future.\n" -"\n" -"Target hosts in HBAC rules must be hosts managed by IPA.\n" -"\n" -"The available services and groups of services are controlled by the\n" -"hbacsvc and hbacsvcgroup plug-ins respectively.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Create a rule, \"test1\", that grants all users access to the host \"server" -"\" from\n" -" anywhere:\n" -" ipa hbacrule-add --usercat=all test1\n" -" ipa hbacrule-add-host --hosts=server.example.com test1\n" -"\n" -" Display the properties of a named HBAC rule:\n" -" ipa hbacrule-show test1\n" -"\n" -" Create a rule for a specific service. This lets the user john access\n" -" the sshd service on any machine from any machine:\n" -" ipa hbacrule-add --hostcat=all john_sshd\n" -" ipa hbacrule-add-user --users=john john_sshd\n" -" ipa hbacrule-add-service --hbacsvcs=sshd john_sshd\n" -"\n" -" Create a rule for a new service group. This lets the user john access\n" -" the FTP service on any machine from any machine:\n" -" ipa hbacsvcgroup-add ftpers\n" -" ipa hbacsvc-add sftp\n" -" ipa hbacsvcgroup-add-member --hbacsvcs=ftp --hbacsvcs=sftp ftpers\n" -" ipa hbacrule-add --hostcat=all john_ftp\n" -" ipa hbacrule-add-user --users=john john_ftp\n" -" ipa hbacrule-add-service --hbacsvcgroups=ftpers john_ftp\n" -"\n" -" Disable a named HBAC rule:\n" -" ipa hbacrule-disable test1\n" -"\n" -" Remove a named HBAC rule:\n" -" ipa hbacrule-del allow_server\n" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:108 -msgid "The deny type has been deprecated." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:130 -msgid "HBAC rule" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:131 -msgid "HBAC rules" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:201 -msgid "HBAC Rules" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:212 -msgid "Rule type (allow)" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:213 -msgid "Rule type" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:236 -msgid "Source host category" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:237 -msgid "Source host category the rule applies to" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:243 ipaserver/plugins/caacl.py:207 -msgid "Service category" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:244 -msgid "Service category the rule applies to" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:277 -msgid "Source Hosts" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:282 -msgid "Source Host Groups" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:300 -msgid "Create a new HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:302 +#: ipaserver/plugins/idviews.py:1255 #, python-format -msgid "Added HBAC rule \"%(value)s\"" +msgid "Deleted Group ID override \"%(value)s\"" msgstr "" -#: ipaserver/plugins/hbacrule.py:314 -msgid "Delete an HBAC rule." +#: ipaserver/plugins/idviews.py:1260 +msgid "Modify an Group ID override." msgstr "" -#: ipaserver/plugins/hbacrule.py:316 +#: ipaserver/plugins/idviews.py:1261 #, python-format -msgid "Deleted HBAC rule \"%(value)s\"" +msgid "Modified an Group ID override \"%(value)s\"" msgstr "" -#: ipaserver/plugins/hbacrule.py:331 -msgid "Modify an HBAC rule." +#: ipaserver/plugins/idviews.py:1266 +msgid "Search for an Group ID override." msgstr "" -#: ipaserver/plugins/hbacrule.py:333 +#: ipaserver/plugins/idviews.py:1267 #, python-format -msgid "Modified HBAC rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:356 ipaserver/plugins/caacl.py:302 -msgid "" -"service category cannot be set to 'all' while there are allowed services" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:365 -msgid "Search for HBAC rules." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:368 -#, python-format -msgid "%(count)d HBAC rule matched" -msgid_plural "%(count)d HBAC rules matched" +msgid "%(count)d Group ID override matched" +msgid_plural "%(count)d Group ID overrides matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/hbacrule.py:375 -msgid "Display the properties of an HBAC rule." +#: ipaserver/plugins/idviews.py:1282 +msgid "Display information about an Group ID override." msgstr "" -#: ipaserver/plugins/hbacrule.py:381 -msgid "Enable an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:383 -#, python-format -msgid "Enabled HBAC rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:411 -msgid "Disable an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:413 -#, python-format -msgid "Disabled HBAC rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:447 ipaserver/plugins/hbacrule.py:478 -msgid "Access time" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:503 -msgid "Add users and groups to an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:525 -msgid "Remove users and groups from an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:534 -msgid "Add target hosts and hostgroups to an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:556 -msgid "Remove target hosts and hostgroups from an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:565 -msgid "Add source hosts and hostgroups to an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:578 -msgid "Remove source hosts and hostgroups from an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:591 -msgid "Add services to an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hbacrule.py:606 ipaserver/plugins/caacl.py:459 -msgid "services cannot be added when service category='all'" -msgstr "" - -#: ipaserver/plugins/hbacrule.py:613 -msgid "Remove service and service groups from an HBAC rule." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:35 +#: ipaserver/plugins/krbtpolicy.py:27 msgid "" "\n" -"Groups of hosts.\n" +"Kerberos ticket policy\n" "\n" -"Manage groups of hosts. This is useful for applying access control to a\n" -"number of hosts by using Host-based Access Control.\n" +"There is a single Kerberos ticket policy. This policy defines the\n" +"maximum ticket lifetime and the maximum renewal age, the period during\n" +"which the ticket is renewable.\n" +"\n" +"You can also create a per-user ticket policy by specifying the user login.\n" +"\n" +"For changes to the global policy to take effect, restarting the KDC service\n" +"is required, which can be achieved using:\n" +"\n" +"service krb5kdc restart\n" +"\n" +"Changes to per-user policies take effect immediately for newly requested\n" +"tickets (e.g. when the user next runs kinit).\n" "\n" "EXAMPLES:\n" "\n" -" Add a new host group:\n" -" ipa hostgroup-add --desc=\"Baltimore hosts\" baltimore\n" +" Display the current Kerberos ticket policy:\n" +" ipa krbtpolicy-show\n" "\n" -" Add another new host group:\n" -" ipa hostgroup-add --desc=\"Maryland hosts\" maryland\n" +" Reset the policy to the default:\n" +" ipa krbtpolicy-reset\n" "\n" -" Add members to the hostgroup (using Bash brace expansion):\n" -" ipa hostgroup-add-member --hosts={box1,box2,box3} baltimore\n" +" Modify the policy to 8 hours max life, 1-day max renewal:\n" +" ipa krbtpolicy-mod --maxlife=28800 --maxrenew=86400\n" "\n" -" Add a hostgroup as a member of another hostgroup:\n" -" ipa hostgroup-add-member --hostgroups=baltimore maryland\n" +" Display effective Kerberos ticket policy for user 'admin':\n" +" ipa krbtpolicy-show admin\n" "\n" -" Remove a host from the hostgroup:\n" -" ipa hostgroup-remove-member --hosts=box2 baltimore\n" +" Reset per-user policy for user 'admin':\n" +" ipa krbtpolicy-reset admin\n" "\n" -" Display a host group:\n" -" ipa hostgroup-show baltimore\n" -"\n" -" Add a member manager:\n" -" ipa hostgroup-add-member-manager --users=user1 baltimore\n" -"\n" -" Remove a member manager\n" -" ipa hostgroup-remove-member-manager --users=user1 baltimore\n" -"\n" -" Delete a hostgroup:\n" -" ipa hostgroup-del baltimore\n" +" Modify per-user policy for user 'admin':\n" +" ipa krbtpolicy-mod admin --maxlife=3600\n" msgstr "" -#: ipaserver/plugins/hostgroup.py:106 -msgid "host group" +#: ipaserver/plugins/krbtpolicy.py:86 +msgid "kerberos ticket policy settings" msgstr "" -#: ipaserver/plugins/hostgroup.py:107 -msgid "host groups" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:178 -msgid "Host Group" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:185 -msgid "Host-group" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:186 -msgid "Name of host-group" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:193 -msgid "A description of this host-group" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:219 -msgid "Add a new hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:222 -#, python-format -msgid "Added hostgroup \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:238 -#, python-format -msgid "" -"netgroup with name \"%s\" already exists. Hostgroups and netgroups share a " -"common namespace" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:259 -msgid "Delete a hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:261 -#, python-format -msgid "Deleted hostgroup \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:265 ipaserver/plugins/hostgroup.py:338 -msgid "hostgroup" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:267 -msgid "privileged hostgroup" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:274 -msgid "Modify a hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:277 -#, python-format -msgid "Modified hostgroup \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/hostgroup.py:287 -msgid "Search for hostgroups." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:292 -#, python-format -msgid "%(count)d hostgroup matched" -msgid_plural "%(count)d hostgroups matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/hostgroup.py:305 -msgid "Display information about a hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:319 -msgid "Add members to a hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:329 -msgid "Remove members from a hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:351 -msgid "Add users that can manage members of this hostgroup." -msgstr "" - -#: ipaserver/plugins/hostgroup.py:361 -msgid "Remove users that can manage members of this hostgroup." -msgstr "" - -#: ipaserver/plugins/sudo.py:7 -msgid "commands for controlling sudo configuration" -msgstr "" - -#: ipaserver/plugins/passwd.py:40 ipaclient/remote_plugins/2_114/passwd.py:19 -msgid "" -"\n" -"Set a user's password\n" -"\n" -"If someone other than a user changes that user's password (e.g., Helpdesk\n" -"resets it) then the password will need to be changed the first time it\n" -"is used. This is so the end-user is the only one who knows the password.\n" -"\n" -"The IPA password policy controls how often a password may be changed,\n" -"what strength requirements exist, and the length of the password history.\n" -"\n" -"EXAMPLES:\n" -"\n" -" To reset your own password:\n" -" ipa passwd\n" -"\n" -" To change another user's password:\n" -" ipa passwd tuser1\n" -msgstr "" - -#: ipaserver/plugins/passwd.py:81 ipaclient/remote_plugins/2_114/passwd.py:43 -msgid "Set a user's password." -msgstr "" - -#: ipaserver/plugins/passwd.py:88 ipaserver/plugins/hbactest.py:270 -#: ipaserver/plugins/krbtpolicy.py:134 +#: ipaserver/plugins/krbtpolicy.py:134 ipaserver/plugins/passwd.py:88 +#: ipaserver/plugins/hbactest.py:270 msgid "User name" msgstr "" -#: ipaserver/plugins/passwd.py:95 ipaserver/plugins/internal.py:1668 -msgid "New Password" +#: ipaserver/plugins/krbtpolicy.py:135 +msgid "Manage ticket policy for specific user" msgstr "" -#: ipaserver/plugins/passwd.py:98 ipaserver/plugins/internal.py:1662 -msgid "Current Password" +#: ipaserver/plugins/krbtpolicy.py:140 +msgid "Max life" msgstr "" -#: ipaserver/plugins/passwd.py:107 ipaserver/plugins/internal.py:188 -#: ipaserver/plugins/internal.py:1670 -msgid "OTP" +#: ipaserver/plugins/krbtpolicy.py:141 +msgid "Maximum ticket life (seconds)" msgstr "" -#: ipaserver/plugins/passwd.py:108 ipaclient/remote_plugins/2_114/passwd.py:75 -msgid "One Time Password" +#: ipaserver/plugins/krbtpolicy.py:146 +msgid "Max renew" msgstr "" -#: ipaserver/plugins/passwd.py:114 +#: ipaserver/plugins/krbtpolicy.py:147 +msgid "Maximum renewable age (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:152 +msgid "OTP max life" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:153 +msgid "OTP token maximum ticket life (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:157 +msgid "OTP max renew" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:158 +msgid "OTP token ticket maximum renewable age (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:162 +msgid "RADIUS max life" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:163 +msgid "RADIUS maximum ticket life (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:167 +msgid "RADIUS max renew" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:168 +msgid "RADIUS ticket maximum renewable age (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:172 +msgid "PKINIT max life" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:173 +msgid "PKINIT maximum ticket life (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:177 +msgid "PKINIT max renew" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:178 +msgid "PKINIT ticket maximum renewable age (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:182 +msgid "Hardened max life" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:183 +msgid "Hardened ticket maximum ticket life (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:187 +msgid "Hardened max renew" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:188 +msgid "Hardened ticket maximum renewable age (seconds)" +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:221 +msgid "Modify Kerberos ticket policy." +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:246 +msgid "Display the current Kerberos ticket policy." +msgstr "" + +#: ipaserver/plugins/krbtpolicy.py:272 #, python-format -msgid "Changed password for \"%(value)s\"" +msgid "Ticket policy for %s could not be read" msgstr "" -#: ipaserver/plugins/passwd.py:143 ipaclient/plugins/vault.py:144 -#: ipaclient/plugins/vault.py:163 -msgid "Invalid credentials" +#: ipaserver/plugins/krbtpolicy.py:292 +msgid "Default ticket policy could not be read" msgstr "" -#: ipaserver/plugins/ca.py:20 -msgid "" -"\n" -"Manage Certificate Authorities\n" -msgstr "" - -#: ipaserver/plugins/ca.py:22 -msgid "" -"\n" -"Subordinate Certificate Authorities (Sub-CAs) can be added for scoped " -"issuance\n" -"of X.509 certificates.\n" -msgstr "" - -#: ipaserver/plugins/ca.py:25 -msgid "" -"\n" -"CAs are enabled on creation, but their use is subject to CA ACLs unless the\n" -"operator has permission to bypass CA ACLs.\n" -msgstr "" - -#: ipaserver/plugins/ca.py:28 -msgid "" -"\n" -"All CAs except the 'IPA' CA can be disabled or re-enabled. Disabling a CA\n" -"prevents it from issuing certificates but does not affect the validity of " -"its\n" -"certificate.\n" -msgstr "" - -#: ipaserver/plugins/ca.py:32 -msgid "" -"\n" -"CAs (all except the 'IPA' CA) can be deleted. Deleting a CA causes its " -"signing\n" -"certificate to be revoked and its private key deleted.\n" -msgstr "" - -#: ipaserver/plugins/ca.py:37 -msgid "" -"\n" -" Create new CA, subordinate to the IPA CA.\n" -"\n" -" ipa ca-add puppet --desc \"Puppet\" \\\n" -" --subject \"CN=Puppet CA,O=EXAMPLE.COM\"\n" -msgstr "" - -#: ipaserver/plugins/ca.py:42 -msgid "" -"\n" -" Disable a CA.\n" -"\n" -" ipa ca-disable puppet\n" -msgstr "" - -#: ipaserver/plugins/ca.py:46 -msgid "" -"\n" -" Re-enable a CA.\n" -"\n" -" ipa ca-enable puppet\n" -msgstr "" - -#: ipaserver/plugins/ca.py:50 -msgid "" -"\n" -" Delete a CA.\n" -"\n" -" ipa ca-del puppet\n" -msgstr "" - -#: ipaserver/plugins/ca.py:66 ipaserver/plugins/ca.py:76 -msgid "Certificate Authority" -msgstr "" - -#: ipaserver/plugins/ca.py:67 ipaserver/plugins/ca.py:75 -msgid "Certificate Authorities" -msgstr "" - -#: ipaserver/plugins/ca.py:82 ipaserver/plugins/schema.py:54 -#: ipaserver/plugins/trust.py:1418 -msgid "Name" -msgstr "" - -#: ipaserver/plugins/ca.py:83 -msgid "Name for referencing the CA" -msgstr "" - -#: ipaserver/plugins/ca.py:88 -msgid "Description of the purpose of the CA" -msgstr "" - -#: ipaserver/plugins/ca.py:92 -msgid "Authority ID" -msgstr "" - -#: ipaserver/plugins/ca.py:93 -msgid "Dogtag Authority ID" -msgstr "" - -#: ipaserver/plugins/ca.py:98 ipaserver/plugins/ca.py:284 -msgid "Subject DN" -msgstr "" - -#: ipaserver/plugins/ca.py:99 -msgid "Subject Distinguished Name" -msgstr "" - -#: ipaserver/plugins/ca.py:104 ipaserver/plugins/cert.py:424 -msgid "Issuer DN" -msgstr "" - -#: ipaserver/plugins/ca.py:105 -msgid "Issuer Distinguished Name" -msgstr "" - -#: ipaserver/plugins/ca.py:111 ipaserver/plugins/cert.py:352 -msgid "Base-64 encoded certificate." -msgstr "" - -#: ipaserver/plugins/ca.py:116 ipaserver/plugins/cert.py:357 -msgid "Certificate chain" -msgstr "" - -#: ipaserver/plugins/ca.py:117 ipaserver/plugins/cert.py:358 -msgid "X.509 certificate chain" -msgstr "" - -#: ipaserver/plugins/ca.py:216 -msgid "Search for CAs." -msgstr "" - -#: ipaserver/plugins/ca.py:218 -#, python-format -msgid "%(count)d CA matched" -msgid_plural "%(count)d CAs matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/ca.py:235 ipaserver/plugins/cert.py:597 -msgid "Include certificate chain in output" -msgstr "" - -#: ipaserver/plugins/ca.py:241 -msgid "Display the properties of a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:258 -msgid "Create a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:259 -#, python-format -msgid "Created CA \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/ca.py:269 -#, python-format -msgid "Insufficient 'add' privilege for entry '%s'." -msgstr "" - -#: ipaserver/plugins/ca.py:285 -#, python-format -msgid "Unrecognized attributes: %(attrs)s" -msgstr "" - -#: ipaserver/plugins/ca.py:300 -#, python-format -msgid "Subject DN is already used by CA '%s'" -msgstr "" - -#: ipaserver/plugins/ca.py:324 -msgid "Delete a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:326 -#, python-format -msgid "Deleted CA \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/ca.py:335 -msgid "Insufficient privilege to delete a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:339 ipaserver/plugins/ca.py:362 -#: ipaserver/plugins/ca.py:402 ipaserver/plugins/internal.py:632 -msgid "CA" -msgstr "" - -#: ipaserver/plugins/ca.py:341 -msgid "IPA CA cannot be deleted" -msgstr "" - -#: ipaserver/plugins/ca.py:353 -msgid "Modify CA configuration." -msgstr "" - -#: ipaserver/plugins/ca.py:354 -#, python-format -msgid "Modified CA \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/ca.py:380 -msgid "Insufficient privilege to modify a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:396 -msgid "Disable a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:397 -#, python-format -msgid "Disabled CA \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/ca.py:404 -msgid "IPA CA cannot be disabled" -msgstr "" - -#: ipaserver/plugins/ca.py:414 -msgid "Enable a CA." -msgstr "" - -#: ipaserver/plugins/ca.py:415 -#, python-format -msgid "Enabled CA \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/internal.py:30 -msgid "" -"\n" -"Plugins not accessible directly through the CLI, commands used internally\n" -msgstr "" - -#: ipaserver/plugins/internal.py:38 -msgid "Export plugin meta-data for the webUI." -msgstr "" - -#: ipaserver/plugins/internal.py:44 ipaserver/plugins/internal.py:53 -msgid "Name of object to export" -msgstr "" - -#: ipaserver/plugins/internal.py:47 ipaserver/plugins/internal.py:56 -msgid "Name of method to export" -msgstr "" - -#: ipaserver/plugins/internal.py:59 -msgid "Name of command to export" -msgstr "" - -#: ipaserver/plugins/internal.py:64 -msgid "Dict of JSON encoded IPA Objects" -msgstr "" - -#: ipaserver/plugins/internal.py:65 -msgid "Dict of JSON encoded IPA Methods" -msgstr "" - -#: ipaserver/plugins/internal.py:66 -msgid "Dict of JSON encoded IPA Commands" -msgstr "" - -#: ipaserver/plugins/internal.py:151 -msgid "Internationalization messages" -msgstr "" - -#: ipaserver/plugins/internal.py:157 -msgid "Your session has expired. Please log in again." -msgstr "" - -#: ipaserver/plugins/internal.py:161 ipaserver/plugins/internal.py:205 -msgid "Apply" -msgstr "" - -#: ipaserver/plugins/internal.py:162 -msgid "Rebuild auto membership" -msgstr "" - -#: ipaserver/plugins/internal.py:163 -msgid "Are you sure you want to rebuild auto membership?" -msgstr "" - -#: ipaserver/plugins/internal.py:164 ipaserver/plugins/automember.py:799 -msgid "Automember rebuild membership task completed" -msgstr "" - -#: ipaserver/plugins/internal.py:165 -msgid "Are you sure you want to proceed with the action?" -msgstr "" - -#: ipaserver/plugins/internal.py:166 -#, python-brace-format -msgid "Are you sure you want to delete ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:167 -#, python-brace-format -msgid "Are you sure you want to disable ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:168 -#, python-brace-format -msgid "Are you sure you want to enable ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:169 -msgid "Actions" -msgstr "" - -#: ipaserver/plugins/internal.py:172 ipaserver/plugins/internal.py:200 -#: ipaserver/plugins/internal.py:261 -msgid "Add" -msgstr "" - -#: ipaserver/plugins/internal.py:173 -#, python-brace-format -msgid "${count} item(s) added" -msgstr "" - -#: ipaserver/plugins/internal.py:174 -msgid "Direct Membership" -msgstr "" - -#: ipaserver/plugins/internal.py:175 -#, python-brace-format -msgid "Filter available ${other_entity}" -msgstr "" - -#: ipaserver/plugins/internal.py:176 -msgid "Indirect Membership" -msgstr "" - -#: ipaserver/plugins/internal.py:177 -msgid "No entries." -msgstr "" - -#: ipaserver/plugins/internal.py:178 -#, python-brace-format -msgid "Showing ${start} to ${end} of ${total} entries." -msgstr "" - -#: ipaserver/plugins/internal.py:179 ipaserver/plugins/internal.py:276 -msgid "Remove" -msgstr "" - -#: ipaserver/plugins/internal.py:180 -#, python-brace-format -msgid "${count} item(s) removed" -msgstr "" - -#: ipaserver/plugins/internal.py:181 -msgid "Show Results" -msgstr "" - -#: ipaserver/plugins/internal.py:184 -msgid "Authentication indicators" -msgstr "" - -#: ipaserver/plugins/internal.py:185 -msgid "Authentication indicator" -msgstr "" - -#: ipaserver/plugins/internal.py:186 -msgid "" -"

Implicit method (password) will be used if no method is chosen.

Password + Two-factor: LDAP and Kerberos allow " -"authentication with either one of the authentication types but Kerberos uses " -"pre-authentication method which requires to use armor ccache.

RADIUS with another type: Kerberos always use RADIUS, " -"but LDAP never does. LDAP only recognize the password and two-factor " -"authentication options.

" -msgstr "" - -#: ipaserver/plugins/internal.py:187 -msgid "Add Custom Authentication Indicator" -msgstr "" - -#: ipaserver/plugins/internal.py:189 -msgid "Two factor authentication (password + OTP)" -msgstr "" - -#: ipaserver/plugins/internal.py:191 -msgid "RADIUS" -msgstr "" - -#: ipaserver/plugins/internal.py:193 -msgid "Hardened Password (by SPAKE or FAST)" -msgstr "" - -#: ipaserver/plugins/internal.py:194 -msgid "Disable per-user override" -msgstr "" - -#: ipaserver/plugins/internal.py:195 -msgid "" -"

Per-user setting, overwrites the global setting if any option is checked." -"

Password + Two-factor: LDAP and Kerberos allow " -"authentication with either one of the authentication types but Kerberos uses " -"pre-authentication method which requires to use armor ccache.

RADIUS with another type: Kerberos always use RADIUS, " -"but LDAP never does. LDAP only recognize the password and two-factor " -"authentication options.

" -msgstr "" - -#: ipaserver/plugins/internal.py:198 ipaserver/plugins/internal.py:271 -#: ipaserver/plugins/internal.py:1690 -msgid "About" -msgstr "" - -#: ipaserver/plugins/internal.py:199 -msgid "Activate" -msgstr "" - -#: ipaserver/plugins/internal.py:201 -msgid "Add and Add Another" -msgstr "" - -#: ipaserver/plugins/internal.py:202 -msgid "Add and Close" -msgstr "" - -#: ipaserver/plugins/internal.py:203 -msgid "Add and Edit" -msgstr "" - -#: ipaserver/plugins/internal.py:204 -msgid "Add Many" -msgstr "" - -#: ipaserver/plugins/internal.py:206 -msgid "Back" -msgstr "" - -#: ipaserver/plugins/internal.py:207 -msgid "Cancel" -msgstr "" - -#: ipaserver/plugins/internal.py:208 -msgid "Clear" -msgstr "" - -#: ipaserver/plugins/internal.py:209 -msgid "Clear all fields on the page." -msgstr "" - -#: ipaserver/plugins/internal.py:210 -msgid "Close" -msgstr "" - -#: ipaserver/plugins/internal.py:211 ipaserver/plugins/internal.py:1894 -msgid "Disable" -msgstr "" - -#: ipaserver/plugins/internal.py:212 ipaserver/plugins/internal.py:639 -msgid "Download" -msgstr "" - -#: ipaserver/plugins/internal.py:213 -msgid "Download certificate as PEM formatted file." -msgstr "" - -#: ipaserver/plugins/internal.py:214 -msgid "Edit" -msgstr "" - -#: ipaserver/plugins/internal.py:215 ipaserver/plugins/internal.py:1896 -msgid "Enable" -msgstr "" - -#: ipaserver/plugins/internal.py:217 -msgid "Find" -msgstr "" - -#: ipaserver/plugins/internal.py:218 -msgid "Get" -msgstr "" - -#: ipaserver/plugins/internal.py:219 -msgid "Hide" -msgstr "" - -#: ipaserver/plugins/internal.py:220 -msgid "Issue" -msgstr "" - -#: ipaserver/plugins/internal.py:221 -msgid "Match" -msgstr "" - -#: ipaserver/plugins/internal.py:222 -msgid "Match users according to certificate." -msgstr "" - -#: ipaserver/plugins/internal.py:223 -msgid "Migrate" -msgstr "" - -#: ipaserver/plugins/internal.py:224 -msgid "OK" -msgstr "" - -#: ipaserver/plugins/internal.py:225 -msgid "Refresh" -msgstr "" - -#: ipaserver/plugins/internal.py:226 -msgid "Reload current settings from the server." -msgstr "" - -#: ipaserver/plugins/internal.py:227 -msgid "Delete" -msgstr "" - -#: ipaserver/plugins/internal.py:228 ipaserver/plugins/internal.py:680 -msgid "Remove hold" -msgstr "" - -#: ipaserver/plugins/internal.py:229 -msgid "Reset" -msgstr "" - -#: ipaserver/plugins/internal.py:230 ipaserver/plugins/internal.py:1683 -msgid "Reset Password" -msgstr "" - -#: ipaserver/plugins/internal.py:231 -msgid "Reset Password and Log in" -msgstr "" - -#: ipaserver/plugins/internal.py:232 -msgid "Restore" -msgstr "" - -#: ipaserver/plugins/internal.py:233 -msgid "Retry" -msgstr "" - -#: ipaserver/plugins/internal.py:234 -msgid "Revert" -msgstr "" - -#: ipaserver/plugins/internal.py:236 -msgid "Revoke" -msgstr "" - -#: ipaserver/plugins/internal.py:237 -msgid "Save" -msgstr "" - -#: ipaserver/plugins/internal.py:238 -msgid "Set" -msgstr "" - -#: ipaserver/plugins/internal.py:239 -msgid "Show" -msgstr "" - -#: ipaserver/plugins/internal.py:240 -msgid "Stage" -msgstr "" - -#: ipaserver/plugins/internal.py:242 -msgid "Update" -msgstr "" - -#: ipaserver/plugins/internal.py:243 -msgid "View" -msgstr "" - -#: ipaserver/plugins/internal.py:246 ipaserver/plugins/internal.py:1691 -msgid "Customization" -msgstr "" - -#: ipaserver/plugins/internal.py:247 -msgid "Pagination Size" -msgstr "" - -#: ipaserver/plugins/internal.py:250 -msgid "Collapse All" -msgstr "" - -#: ipaserver/plugins/internal.py:251 -msgid "Expand All" -msgstr "" - -#: ipaserver/plugins/internal.py:252 -msgid "General" -msgstr "" - -#: ipaserver/plugins/internal.py:253 -msgid "Identity Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:254 -#, python-brace-format -msgid "${entity} ${primary_key} Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:255 -msgid "Back to Top" -msgstr "" - -#: ipaserver/plugins/internal.py:256 -#, python-brace-format -msgid "${entity} ${primary_key} updated" -msgstr "" - -#: ipaserver/plugins/internal.py:259 -#, python-brace-format -msgid "${entity} successfully added" -msgstr "" - -#: ipaserver/plugins/internal.py:260 -msgid "Add custom value" -msgstr "" - -#: ipaserver/plugins/internal.py:262 -msgid "Available" -msgstr "" - -#: ipaserver/plugins/internal.py:263 -msgid "Some operations failed." -msgstr "" - -#: ipaserver/plugins/internal.py:264 -msgid "Operations Error" -msgstr "" - -#: ipaserver/plugins/internal.py:265 -msgid "Confirmation" -msgstr "" - -#: ipaserver/plugins/internal.py:266 -msgid "Custom value" -msgstr "" - -#: ipaserver/plugins/internal.py:267 -msgid "This page has unsaved changes. Please save or revert." -msgstr "" - -#: ipaserver/plugins/internal.py:268 -msgid "Unsaved Changes" -msgstr "" - -#: ipaserver/plugins/internal.py:269 -#, python-brace-format -msgid "Edit ${entity}" -msgstr "" - -#: ipaserver/plugins/internal.py:270 -msgid "Hide details" -msgstr "" - -#: ipaserver/plugins/internal.py:272 -#, python-brace-format -msgid "${product}, version: ${version}" -msgstr "" - -#: ipaserver/plugins/internal.py:273 -msgid "Prospective" -msgstr "" - -#: ipaserver/plugins/internal.py:274 -msgid "Redirection" -msgstr "" - -#: ipaserver/plugins/internal.py:275 -msgid "Select entries to be removed." -msgstr "" - -#: ipaserver/plugins/internal.py:277 -msgid "Result" -msgstr "" - -#: ipaserver/plugins/internal.py:278 -msgid "Show details" -msgstr "" - -#: ipaserver/plugins/internal.py:279 -msgid "Success" -msgstr "" - -#: ipaserver/plugins/internal.py:280 -msgid "Validation error" -msgstr "" - -#: ipaserver/plugins/internal.py:281 -msgid "Input form contains invalid or missing values." -msgstr "" - -#: ipaserver/plugins/internal.py:284 -msgid "Please try the following options:" -msgstr "" - -#: ipaserver/plugins/internal.py:285 -msgid "If the problem persists please contact the system administrator." -msgstr "" - -#: ipaserver/plugins/internal.py:286 -msgid "Refresh the page." -msgstr "" - -#: ipaserver/plugins/internal.py:287 -msgid "Reload the browser." -msgstr "" - -#: ipaserver/plugins/internal.py:288 -msgid "Return to the main page and retry the operation" -msgstr "" - -#: ipaserver/plugins/internal.py:289 -#, python-brace-format -msgid "An error has occurred (${error})" -msgstr "" - -#: ipaserver/plugins/internal.py:292 ipaclient/plugins/cert.py:190 -msgid "Error" -msgstr "" - -#: ipaserver/plugins/internal.py:293 -msgid "HTTP Error" -msgstr "" - -#: ipaserver/plugins/internal.py:294 -msgid "Internal Error" -msgstr "" - -#: ipaserver/plugins/internal.py:295 -msgid "IPA Error" -msgstr "" - -#: ipaserver/plugins/internal.py:296 -msgid "No response" -msgstr "" - -#: ipaserver/plugins/internal.py:297 -msgid "Unknown Error" -msgstr "" - -#: ipaserver/plugins/internal.py:298 -msgid "URL" -msgstr "" - -#: ipaserver/plugins/internal.py:301 -#, python-brace-format -msgid "${primary_key} is managed by:" -msgstr "" - -#: ipaserver/plugins/internal.py:302 -#, python-brace-format -msgid "${primary_key} members:" -msgstr "" - -#: ipaserver/plugins/internal.py:303 -#, python-brace-format -msgid "${primary_key} is a member of:" -msgstr "" - -#: ipaserver/plugins/internal.py:304 -#, python-brace-format -msgid "${primary_key} member managers:" -msgstr "" - -#: ipaserver/plugins/internal.py:307 -msgid "Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:308 ipaserver/plugins/internal.py:1704 -msgid "Search" -msgstr "" - -#: ipaserver/plugins/internal.py:310 -msgid "False" -msgstr "" - -#: ipaserver/plugins/internal.py:313 -#, python-brace-format -msgid "Allow user groups to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:316 -#, python-brace-format -msgid "Allow user groups to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:319 -#, python-brace-format -msgid "Allow host groups to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:322 -#, python-brace-format -msgid "Allow host groups to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:325 -#, python-brace-format -msgid "Allow hosts to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:328 -#, python-brace-format -msgid "Allow hosts to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:331 -#, python-brace-format -msgid "Allow users to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:334 -#, python-brace-format -msgid "Allow users to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:336 -msgid "Allowed to create keytab" -msgstr "" - -#: ipaserver/plugins/internal.py:337 -msgid "Allowed to retrieve keytab" -msgstr "" - -#: ipaserver/plugins/internal.py:339 -#, python-brace-format -msgid "Disallow user groups to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:342 -#, python-brace-format -msgid "Disallow user groups to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:345 -#, python-brace-format -msgid "Disallow host groups to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:348 -#, python-brace-format -msgid "Disallow host groups to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:351 -#, python-brace-format -msgid "Disallow hosts to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:354 -#, python-brace-format -msgid "Disallow hosts to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:357 -#, python-brace-format -msgid "Disallow users to create keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:360 -#, python-brace-format -msgid "Disallow users to retrieve keytab of '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:364 -msgid "Add Kerberos Principal Alias" -msgstr "" - -#: ipaserver/plugins/internal.py:365 -msgid "New kerberos principal alias" -msgstr "" - -#: ipaserver/plugins/internal.py:366 -msgid "Remove Kerberos Alias" -msgstr "" - -#: ipaserver/plugins/internal.py:367 -#, python-brace-format -msgid "Do you want to remove kerberos alias ${alias}?" -msgstr "" - -#: ipaserver/plugins/internal.py:370 -msgid "Inherited from server configuration" -msgstr "" - -#: ipaserver/plugins/internal.py:371 -msgid "MS-PAC" -msgstr "" - -#: ipaserver/plugins/internal.py:372 -msgid "Override inherited settings" -msgstr "" - -#: ipaserver/plugins/internal.py:373 -msgid "PAD" -msgstr "" - -#: ipaserver/plugins/internal.py:376 -msgid "Authenticating" -msgstr "" - -#: ipaserver/plugins/internal.py:378 -msgid "Authentication with personal certificate failed" -msgstr "" - -#: ipaserver/plugins/internal.py:380 -msgid "" -" To log in with certificate, please make sure you have valid personal certificate. " -msgstr "" - -#: ipaserver/plugins/internal.py:384 -msgid "Continue to next page" -msgstr "" - -#: ipaserver/plugins/internal.py:386 -msgid "" -" To log in with username and " -"password, enter them in the corresponding fields, then click 'Log " -"in'." -msgstr "" - -#: ipaserver/plugins/internal.py:389 -msgid "Login failed due to an unknown reason" -msgstr "" - -#: ipaserver/plugins/internal.py:390 -msgid "Logged In As" -msgstr "" - -#: ipaserver/plugins/internal.py:391 -msgid "Authentication with Kerberos failed" -msgstr "" - -#: ipaserver/plugins/internal.py:393 -#, python-brace-format -msgid "" -" To log in with Kerberos, please make sure you have valid tickets (obtainable via kinit) and " -"configured the " -"browser correctly, then click 'Log in'." -msgstr "" - -#: ipaserver/plugins/internal.py:398 -msgid "Loading" -msgstr "" - -#: ipaserver/plugins/internal.py:400 -msgid "Kerberos Principal you entered is expired" -msgstr "" - -#: ipaserver/plugins/internal.py:401 -msgid "Loading data" -msgstr "" - -#: ipaserver/plugins/internal.py:402 -msgid "Log in" -msgstr "" - -#: ipaserver/plugins/internal.py:403 -msgid "Log In Using Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:404 -msgid "Log in using personal certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:405 ipaserver/plugins/internal.py:1692 -msgid "Log out" -msgstr "" - -#: ipaserver/plugins/internal.py:406 -msgid "Log out error" -msgstr "" - -#: ipaserver/plugins/internal.py:408 ipaserver/plugins/internal.py:1677 -msgid "Password or Password+One-Time-Password" -msgstr "" - -#: ipaserver/plugins/internal.py:409 -#, python-brace-format -msgid "You will be redirected in ${count}s" -msgstr "" - -#: ipaserver/plugins/internal.py:410 -msgid "Sync OTP Token" -msgstr "" - -#: ipaserver/plugins/internal.py:411 -msgid "Synchronizing" -msgstr "" - -#: ipaserver/plugins/internal.py:412 -msgid "Username" -msgstr "" - -#: ipaserver/plugins/internal.py:413 -msgid "The user account you entered is locked" -msgstr "" - -#: ipaserver/plugins/internal.py:416 -msgid "number of passwords" -msgstr "" - -#: ipaserver/plugins/internal.py:417 -msgid "seconds" -msgstr "" - -#: ipaserver/plugins/internal.py:420 -msgid "Migrating" -msgstr "" - -#: ipaserver/plugins/internal.py:422 -msgid "There was a problem with your request. Please, try again later." -msgstr "" - -#: ipaserver/plugins/internal.py:425 -msgid "Password migration was not successful" -msgstr "" - -#: ipaserver/plugins/internal.py:427 -msgid "" -"

Password Migration

If you have been sent here by your " -"administrator, your personal information is being migrated to a new identity " -"management solution (IPA).

Please, enter your credentials in the form " -"to complete the process. Upon successful login your kerberos account will be " -"activated.

" -msgstr "" - -#: ipaserver/plugins/internal.py:434 ipaserver/plugins/internal.py:1667 -msgid "The password or username you entered is incorrect" -msgstr "" - -#: ipaserver/plugins/internal.py:435 -msgid "Password migration was successful" -msgstr "" - -#: ipaserver/plugins/internal.py:439 ipaserver/plugins/internal.py:524 -#: ipaserver/plugins/internal.py:1203 -msgid "Attribute" -msgstr "" - -#: ipaserver/plugins/internal.py:442 -msgid "Add delegation" -msgstr "" - -#: ipaserver/plugins/internal.py:443 -msgid "Remove delegations" -msgstr "" - -#: ipaserver/plugins/internal.py:446 ipaserver/plugins/internal.py:775 -msgid "Add permission" -msgstr "" - -#: ipaserver/plugins/internal.py:448 -#, python-brace-format -msgid "Add privileges into permission '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:450 -msgid "Remove permissions" -msgstr "" - -#: ipaserver/plugins/internal.py:452 -#, python-brace-format -msgid "Remove privileges from permission '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:456 -msgid "Add privilege" -msgstr "" - -#: ipaserver/plugins/internal.py:458 -#, python-brace-format -msgid "Add privilege '${primary_key}' into permissions" -msgstr "" - -#: ipaserver/plugins/internal.py:461 -#, python-brace-format -msgid "Add roles into privilege '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:463 -msgid "Remove privileges" -msgstr "" - -#: ipaserver/plugins/internal.py:465 -#, python-brace-format -msgid "Remove privilege '${primary_key}' from permissions" -msgstr "" - -#: ipaserver/plugins/internal.py:468 -#, python-brace-format -msgid "Remove roles from privilege '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:472 -msgid "Role Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:473 -msgid "Add role" -msgstr "" - -#: ipaserver/plugins/internal.py:475 -#, python-brace-format -msgid "Add user groups into role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:478 -#, python-brace-format -msgid "Add hosts into role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:481 -#, python-brace-format -msgid "Add host groups into role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:484 -#, python-brace-format -msgid "Add role '${primary_key}' into privileges" -msgstr "" - -#: ipaserver/plugins/internal.py:487 -#, python-brace-format -msgid "Add services into role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:490 -#, python-brace-format -msgid "Add users into role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:492 -msgid "Remove roles" -msgstr "" - -#: ipaserver/plugins/internal.py:494 -#, python-brace-format -msgid "Remove role '${primary_key}' from privileges" -msgstr "" - -#: ipaserver/plugins/internal.py:497 -#, python-brace-format -msgid "Remove user groups from role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:500 -#, python-brace-format -msgid "Remove hosts from role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:503 -#, python-brace-format -msgid "Remove host groups from role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:506 -#, python-brace-format -msgid "Remove services from role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:509 -#, python-brace-format -msgid "Remove users from role '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:513 -msgid "Add self service permission" -msgstr "" - -#: ipaserver/plugins/internal.py:514 -msgid "Remove self service permissions" -msgstr "" - -#: ipaserver/plugins/internal.py:517 -msgid "Add rule" -msgstr "" - -#: ipaserver/plugins/internal.py:519 -#, python-brace-format -msgid "Add inclusive condition into '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:522 -#, python-brace-format -msgid "Add exclusive condition into '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:525 -msgid "Default host group" -msgstr "" - -#: ipaserver/plugins/internal.py:526 -msgid "Default user group" -msgstr "" - -#: ipaserver/plugins/internal.py:527 -msgid "Exclusive" -msgstr "" - -#: ipaserver/plugins/internal.py:528 -msgid "Expression" -msgstr "" - -#: ipaserver/plugins/internal.py:529 -msgid "Host group rule" -msgstr "" - -#: ipaserver/plugins/internal.py:530 -msgid "Host group rules" -msgstr "" - -#: ipaserver/plugins/internal.py:531 -msgid "Inclusive" -msgstr "" - -#: ipaserver/plugins/internal.py:532 -msgid "Remove auto membership rules" -msgstr "" - -#: ipaserver/plugins/internal.py:534 -#, python-brace-format -msgid "Remove exclusive conditions from rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:537 -#, python-brace-format -msgid "Remove inclusive conditions from rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:539 -msgid "User group rule" -msgstr "" - -#: ipaserver/plugins/internal.py:540 -msgid "User group rules" -msgstr "" - -#: ipaserver/plugins/internal.py:543 -msgid "Add automount key" -msgstr "" - -#: ipaserver/plugins/internal.py:544 -msgid "Remove automount keys" -msgstr "" - -#: ipaserver/plugins/internal.py:547 -msgid "Add automount location" -msgstr "" - -#: ipaserver/plugins/internal.py:548 -msgid "Automount Location Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:549 -msgid "Remove automount locations" -msgstr "" - -#: ipaserver/plugins/internal.py:552 -msgid "Add automount map" -msgstr "" - -#: ipaserver/plugins/internal.py:553 -msgid "Map Type" -msgstr "" - -#: ipaserver/plugins/internal.py:554 -msgid "Direct" -msgstr "" - -#: ipaserver/plugins/internal.py:555 -msgid "Indirect" -msgstr "" - -#: ipaserver/plugins/internal.py:556 -msgid "Remove automount maps" -msgstr "" - -#: ipaserver/plugins/internal.py:559 -msgid "Add certificate authority" -msgstr "" - -#: ipaserver/plugins/internal.py:560 -msgid "Remove certificate authorities" -msgstr "" - -#: ipaserver/plugins/internal.py:563 -msgid "Add CA ACL" -msgstr "" - -#: ipaserver/plugins/internal.py:565 -#, python-brace-format -msgid "Add Certificate Authorities into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:569 -#, python-brace-format -msgid "Add user groups into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:572 -#, python-brace-format -msgid "Add host groups into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:575 -#, python-brace-format -msgid "Add hosts into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:578 -#, python-brace-format -msgid "Add certificate profiles into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:581 -#, python-brace-format -msgid "Add services into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:584 -#, python-brace-format -msgid "Add users into CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:586 -msgid "All" -msgstr "" - -#: ipaserver/plugins/internal.py:587 -msgid "Any CA" -msgstr "" - -#: ipaserver/plugins/internal.py:588 ipaserver/plugins/internal.py:891 -#: ipaserver/plugins/internal.py:1148 ipaserver/plugins/internal.py:1270 -#: ipaserver/plugins/internal.py:1425 -msgid "Any Host" -msgstr "" - -#: ipaserver/plugins/internal.py:589 ipaserver/plugins/internal.py:892 -msgid "Any Service" -msgstr "" - -#: ipaserver/plugins/internal.py:590 -msgid "Any Profile" -msgstr "" - -#: ipaserver/plugins/internal.py:591 ipaserver/plugins/internal.py:893 -#: ipaserver/plugins/internal.py:1149 ipaserver/plugins/internal.py:1271 -#: ipaserver/plugins/internal.py:1426 -msgid "Anyone" -msgstr "" - -#: ipaserver/plugins/internal.py:592 ipaserver/plugins/internal.py:895 -#: ipaserver/plugins/internal.py:1431 -msgid "Rule status" -msgstr "" - -#: ipaserver/plugins/internal.py:593 -msgid "If no CAs are specified, requests to the default CA are allowed." -msgstr "" - -#: ipaserver/plugins/internal.py:594 ipaserver/plugins/caacl.py:216 -msgid "Profiles" -msgstr "" - -#: ipaserver/plugins/internal.py:595 -msgid "Remove CA ACLs" -msgstr "" - -#: ipaserver/plugins/internal.py:597 -#, python-brace-format -msgid "Remove Certificate Authorities from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:601 -#, python-brace-format -msgid "Remove user groups from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:604 -#, python-brace-format -msgid "Remove host groups from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:607 -#, python-brace-format -msgid "Remove hosts from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:610 -#, python-brace-format -msgid "Remove certificate profiles from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:613 -#, python-brace-format -msgid "Remove services from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:616 -#, python-brace-format -msgid "Remove users from CA ACL '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:618 -msgid "Specified CAs" -msgstr "" - -#: ipaserver/plugins/internal.py:619 ipaserver/plugins/internal.py:917 -#: ipaserver/plugins/internal.py:1175 ipaserver/plugins/internal.py:1286 -#: ipaserver/plugins/internal.py:1476 -msgid "Specified Hosts and Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:620 -msgid "Specified Profiles" -msgstr "" - -#: ipaserver/plugins/internal.py:621 ipaserver/plugins/internal.py:918 -msgid "Specified Services and Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:622 ipaserver/plugins/internal.py:919 -#: ipaserver/plugins/internal.py:1176 ipaserver/plugins/internal.py:1287 -#: ipaserver/plugins/internal.py:1477 -msgid "Specified Users and Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:623 -msgid "Permitted to have certificates issued" -msgstr "" - -#: ipaserver/plugins/internal.py:626 -msgid "Remove certificate profiles" -msgstr "" - -#: ipaserver/plugins/internal.py:629 -msgid "AA Compromise" -msgstr "" - -#: ipaserver/plugins/internal.py:630 -msgid "Add principal" -msgstr "" - -#: ipaserver/plugins/internal.py:631 -msgid "Affiliation Changed" -msgstr "" - -#: ipaserver/plugins/internal.py:633 -msgid "CA Compromise" -msgstr "" - -#: ipaserver/plugins/internal.py:635 ipaserver/plugins/internal.py:1906 -msgid "Certificates" -msgstr "" - -#: ipaserver/plugins/internal.py:636 -msgid "Certificate Hold" -msgstr "" - -#: ipaserver/plugins/internal.py:637 -msgid "Cessation of Operation" -msgstr "" - -#: ipaserver/plugins/internal.py:638 -msgid "Common Name" -msgstr "" - -#: ipaserver/plugins/internal.py:640 -msgid "the certificate with serial number " -msgstr "" - -#: ipaserver/plugins/internal.py:641 -msgid "Expires On" -msgstr "" - -#: ipaserver/plugins/internal.py:642 -msgid "Issued on from" -msgstr "" - -#: ipaserver/plugins/internal.py:643 -msgid "Issued on to" -msgstr "" - -#: ipaserver/plugins/internal.py:644 -msgid "Maximum serial number" -msgstr "" - -#: ipaserver/plugins/internal.py:645 -msgid "Minimum serial number" -msgstr "" - -#: ipaserver/plugins/internal.py:647 -msgid "Revoked on from" -msgstr "" - -#: ipaserver/plugins/internal.py:648 -msgid "Revoked on to" -msgstr "" - -#: ipaserver/plugins/internal.py:650 -msgid "Valid not after from" -msgstr "" - -#: ipaserver/plugins/internal.py:651 -msgid "Valid not after to" -msgstr "" - -#: ipaserver/plugins/internal.py:652 -msgid "Valid not before from" -msgstr "" - -#: ipaserver/plugins/internal.py:653 -msgid "Valid not before to" -msgstr "" - -#: ipaserver/plugins/internal.py:654 -msgid "Fingerprints" -msgstr "" - -#: ipaserver/plugins/internal.py:655 -msgid "Get Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:656 -msgid "Certificate Hold Removed" -msgstr "" - -#: ipaserver/plugins/internal.py:658 -#, python-brace-format -msgid "Issue new certificate for host '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:661 -#, python-brace-format -msgid "Issue new certificate for service '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:664 -#, python-brace-format -msgid "Issue new certificate for user '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:666 -msgid "Issue new certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:667 -msgid "Issued By" -msgstr "" - -#: ipaserver/plugins/internal.py:668 -msgid "Issued On" -msgstr "" - -#: ipaserver/plugins/internal.py:669 -msgid "Issued To" -msgstr "" - -#: ipaserver/plugins/internal.py:670 -msgid "Key Compromise" -msgstr "" - -#: ipaserver/plugins/internal.py:671 -msgid "No Valid Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:672 -msgid "New Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:673 -msgid "Certificate in base64 or PEM format" -msgstr "" - -#: ipaserver/plugins/internal.py:674 -msgid "Note" -msgstr "" - -#: ipaserver/plugins/internal.py:675 -msgid "Organization" -msgstr "" - -#: ipaserver/plugins/internal.py:676 -msgid "Organizational Unit" -msgstr "" - -#: ipaserver/plugins/internal.py:677 -#, python-brace-format -msgid "${count} certificate(s) present" -msgstr "" - -#: ipaserver/plugins/internal.py:678 -msgid "Privilege Withdrawn" -msgstr "" - -#: ipaserver/plugins/internal.py:679 -msgid "Reason for Revocation" -msgstr "" - -#: ipaserver/plugins/internal.py:681 -msgid "Remove certificate hold" -msgstr "" - -#: ipaserver/plugins/internal.py:682 -msgid "Do you want to remove the certificate hold?" -msgstr "" - -#: ipaserver/plugins/internal.py:683 -msgid "Remove from CRL" -msgstr "" - -#: ipaserver/plugins/internal.py:684 -#, python-brace-format -msgid "" -"
  1. Create a certificate database or use an existing one. To create a " -"new database:
    # certutil -N -d <database path>
    2. " -"
  2. Create a CSR with subject CN=<${cn_name}>,O=<realm>, for example:
    # certutil -R -d <database path> -a -g " -"<key size> -s 'CN=${cn},O=${realm}'${san}
  3. Copy and " -"paste the CSR (from -----BEGIN NEW CERTIFICATE REQUEST----- to " -"-----END NEW CERTIFICATE REQUEST-----) into the text area below:
" -msgstr "" - -#: ipaserver/plugins/internal.py:685 -#, python-brace-format -msgid " -8 '${cn}'" -msgstr "" - -#: ipaserver/plugins/internal.py:686 -msgid "Certificate requested" -msgstr "" - -#: ipaserver/plugins/internal.py:688 -msgid "Revoke certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:689 -msgid "" -"Do you want to revoke this certificate? Select a reason from the pull-down " -"list." -msgstr "" - -#: ipaserver/plugins/internal.py:690 -msgid "Certificate Revoked" -msgstr "" - -#: ipaserver/plugins/internal.py:691 -msgid "REVOKED" -msgstr "" - -#: ipaserver/plugins/internal.py:694 -msgid "SHA1 Fingerprint" -msgstr "" - -#: ipaserver/plugins/internal.py:695 -msgid "SHA256 Fingerprint" -msgstr "" - -#: ipaserver/plugins/internal.py:696 ipaserver/plugins/internal.py:1020 -#: ipaserver/plugins/internal.py:1322 ipaserver/plugins/internal.py:1898 -#: ipaserver/plugins/cert.py:1256 -msgid "Status" -msgstr "" - -#: ipaserver/plugins/internal.py:697 -msgid "Superseded" -msgstr "" - -#: ipaserver/plugins/internal.py:698 -msgid "Unspecified" -msgstr "" - -#: ipaserver/plugins/internal.py:699 -msgid "Valid Certificate Present" -msgstr "" - -#: ipaserver/plugins/internal.py:700 -msgid "Valid from" -msgstr "" - -#: ipaserver/plugins/internal.py:701 -msgid "Valid to" -msgstr "" - -#: ipaserver/plugins/internal.py:702 -msgid "Validity" -msgstr "" - -#: ipaserver/plugins/internal.py:703 -#, python-brace-format -msgid "Certificate for ${entity} ${primary_key}" -msgstr "" - -#: ipaserver/plugins/internal.py:704 -msgid "View Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:707 -msgid "Certificate Data" -msgstr "" - -#: ipaserver/plugins/internal.py:708 -msgid "Certificate For Match" -msgstr "" - -#: ipaserver/plugins/internal.py:709 -msgid "Certificate Mapping Match" -msgstr "" - -#: ipaserver/plugins/internal.py:711 -msgid "Matched Users" -msgstr "" - -#: ipaserver/plugins/internal.py:712 -msgid "User Login" -msgstr "" - -#: ipaserver/plugins/internal.py:715 -msgid "Add certificate identity mapping rule" -msgstr "" - -#: ipaserver/plugins/internal.py:716 -msgid "Add certificate mapping data" -msgstr "" - -#: ipaserver/plugins/internal.py:719 -msgid "Configuration string" -msgstr "" - -#: ipaserver/plugins/internal.py:720 -#, python-brace-format -msgid "Do you want to remove certificate mapping data ${data}?" -msgstr "" - -#: ipaserver/plugins/internal.py:721 -msgid "Remove certificate mapping data" -msgstr "" - -#: ipaserver/plugins/internal.py:723 -msgid "Issuer and subject" -msgstr "" - -#: ipaserver/plugins/internal.py:724 -msgid "Remove certificate identity mapping rules" -msgstr "" - -#: ipaserver/plugins/internal.py:726 ipaserver/plugins/schema.py:153 -msgid "Version" -msgstr "" - -#: ipaserver/plugins/internal.py:729 -msgid "Group Options" -msgstr "" - -#: ipaserver/plugins/internal.py:730 -msgid "Search Options" -msgstr "" - -#: ipaserver/plugins/internal.py:731 -msgid "SELinux Options" -msgstr "" - -#: ipaserver/plugins/internal.py:732 -msgid "Server Options" -msgstr "" - -#: ipaserver/plugins/internal.py:733 -msgid "Service Options" -msgstr "" - -#: ipaserver/plugins/internal.py:734 -msgid "User Options" -msgstr "" - -#: ipaserver/plugins/internal.py:739 -msgid "Forward first" -msgstr "" - -#: ipaserver/plugins/internal.py:740 -msgid "Forwarding disabled" -msgstr "" - -#: ipaserver/plugins/internal.py:741 -msgid "Forward only" -msgstr "" - -#: ipaserver/plugins/internal.py:742 ipaserver/plugins/internal.py:1434 -#: ipaserver/plugins/internal.py:1540 -msgid "Options" -msgstr "" - -#: ipaserver/plugins/internal.py:743 -msgid "Update System DNS Records" -msgstr "" - -#: ipaserver/plugins/internal.py:744 -msgid "Do you want to update system DNS records?" -msgstr "" - -#: ipaserver/plugins/internal.py:745 -msgid "System DNS records updated" -msgstr "" - -#: ipaserver/plugins/internal.py:748 -msgid "Add DNS forward zone" -msgstr "" - -#: ipaserver/plugins/internal.py:749 -msgid "Remove DNS forward zones" -msgstr "" - -#: ipaserver/plugins/internal.py:752 -msgid "Add DNS resource record" -msgstr "" - -#: ipaserver/plugins/internal.py:753 ipaclient/plugins/vault.py:981 -msgid "Data" -msgstr "" - -#: ipaserver/plugins/internal.py:754 -msgid "DNS record was deleted because it contained no data." -msgstr "" - -#: ipaserver/plugins/internal.py:755 -msgid "Other Record Types" -msgstr "" - -#: ipaserver/plugins/internal.py:756 -msgid "Address not valid, can't redirect" -msgstr "" - -#: ipaserver/plugins/internal.py:757 -msgid "Create dns record" -msgstr "" - -#: ipaserver/plugins/internal.py:758 -msgid "Creating record." -msgstr "" - -#: ipaserver/plugins/internal.py:759 -msgid "Record creation failed." -msgstr "" - -#: ipaserver/plugins/internal.py:760 -msgid "Checking if record exists." -msgstr "" - -#: ipaserver/plugins/internal.py:761 -msgid "Record not found." -msgstr "" - -#: ipaserver/plugins/internal.py:762 -msgid "Redirection to PTR record" -msgstr "" - -#: ipaserver/plugins/internal.py:763 -#, python-brace-format -msgid "Zone found: ${zone}" -msgstr "" - -#: ipaserver/plugins/internal.py:764 -msgid "Target reverse zone not found." -msgstr "" - -#: ipaserver/plugins/internal.py:765 -msgid "Fetching DNS zones." -msgstr "" - -#: ipaserver/plugins/internal.py:766 -msgid "An error occurred while fetching dns zones." -msgstr "" - -#: ipaserver/plugins/internal.py:767 -msgid "You will be redirected to DNS Zone." -msgstr "" - -#: ipaserver/plugins/internal.py:768 -msgid "Remove DNS resource records" -msgstr "" - -#: ipaserver/plugins/internal.py:769 -msgid "Standard Record Types" -msgstr "" - -#: ipaserver/plugins/internal.py:770 -msgid "Records for DNS Zone" -msgstr "" - -#: ipaserver/plugins/internal.py:771 -msgid "Record Type" -msgstr "" - -#: ipaserver/plugins/internal.py:774 -msgid "Add DNS zone" -msgstr "" - -#: ipaserver/plugins/internal.py:776 -#, python-brace-format -msgid "Are you sure you want to add permission for DNS Zone ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:777 -msgid "DNS Zone Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:778 -msgid "Remove DNS zones" -msgstr "" - -#: ipaserver/plugins/internal.py:779 -msgid "Remove Permission" -msgstr "" - -#: ipaserver/plugins/internal.py:780 -#, python-brace-format -msgid "Are you sure you want to remove permission for DNS Zone ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:781 -msgid "Skip DNS check" -msgstr "" - -#: ipaserver/plugins/internal.py:782 -msgid "Skip overlap check" -msgstr "" - -#: ipaserver/plugins/internal.py:783 -msgid "Do you want to check if new authoritative nameserver address is in DNS" -msgstr "" - -#: ipaserver/plugins/internal.py:784 -msgid "Authoritative nameserver change" -msgstr "" - -#: ipaserver/plugins/internal.py:789 -msgid "Level" -msgstr "" - -#: ipaserver/plugins/internal.py:790 -msgid "Set Domain Level" -msgstr "" - -#: ipaserver/plugins/internal.py:793 -msgid "Add user group" -msgstr "" - -#: ipaserver/plugins/internal.py:795 -#, python-brace-format -msgid "Add user groups into user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:798 -#, python-brace-format -msgid "Add user group '${primary_key}' into user groups" -msgstr "" - -#: ipaserver/plugins/internal.py:801 -#, python-brace-format -msgid "Add user group '${primary_key}' into HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:804 -#, python-brace-format -msgid "Add user group '${primary_key}' into netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:807 -#, python-brace-format -msgid "Add user group '${primary_key}' into roles" -msgstr "" - -#: ipaserver/plugins/internal.py:810 -#, python-brace-format -msgid "Add user group '${primary_key}' into sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:813 -#, python-brace-format -msgid "Add services into user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:816 -#, python-brace-format -msgid "Add users into user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:819 -#, python-brace-format -msgid "Add groups as member managers for user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:823 -#, python-brace-format -msgid "Remove groups from member managers for user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:827 -#, python-brace-format -msgid "Add users as member managers for user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:831 -#, python-brace-format -msgid "Remove users from member managers for user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:834 -msgid "Group Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:835 ipaserver/plugins/internal.py:1150 -#: ipaserver/plugins/internal.py:1429 -msgid "External" -msgstr "" - -#: ipaserver/plugins/internal.py:836 ipaserver/plugins/internal.py:1362 -msgid "Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:837 -msgid "Group categories" -msgstr "" - -#: ipaserver/plugins/internal.py:838 -msgid "Change to external group" -msgstr "" - -#: ipaserver/plugins/internal.py:839 -msgid "Change to POSIX group" -msgstr "" - -#: ipaserver/plugins/internal.py:840 -msgid "Non-POSIX" -msgstr "" - -#: ipaserver/plugins/internal.py:841 -msgid "POSIX" -msgstr "" - -#: ipaserver/plugins/internal.py:842 -msgid "Remove user groups" -msgstr "" - -#: ipaserver/plugins/internal.py:844 -#, python-brace-format -msgid "Remove user group '${primary_key}' from user groups" -msgstr "" - -#: ipaserver/plugins/internal.py:847 -#, python-brace-format -msgid "Remove user group '${primary_key}' from netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:850 -#, python-brace-format -msgid "Remove user group '${primary_key}' from roles" -msgstr "" - -#: ipaserver/plugins/internal.py:853 -#, python-brace-format -msgid "Remove user group '${primary_key}' from HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:856 -#, python-brace-format -msgid "Remove user group '${primary_key}' from sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:859 -#, python-brace-format -msgid "Remove user groups from user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:862 -#, python-brace-format -msgid "Remove services from user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:865 -#, python-brace-format -msgid "Remove users from user group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:867 -msgid "Group Type" -msgstr "" - -#: ipaserver/plugins/internal.py:871 -msgid "Add HBAC rule" -msgstr "" - -#: ipaserver/plugins/internal.py:873 -#, python-brace-format -msgid "Add user groups into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:876 -#, python-brace-format -msgid "Add host groups into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:879 -#, python-brace-format -msgid "Add hosts into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:882 -#, python-brace-format -msgid "Add HBAC service groups into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:886 -#, python-brace-format -msgid "Add HBAC services into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:889 -#, python-brace-format -msgid "Add users into HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:894 -msgid "Accessing" -msgstr "" - -#: ipaserver/plugins/internal.py:896 -msgid "Remove HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:898 -#, python-brace-format -msgid "Remove user groups from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:901 -#, python-brace-format -msgid "Remove host groups from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:904 -#, python-brace-format -msgid "Remove hosts from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:907 -#, python-brace-format -msgid "Remove HBAC service groups from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:911 -#, python-brace-format -msgid "Remove HBAC services from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:914 -#, python-brace-format -msgid "Remove users from HBAC rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:916 -msgid "Via Service" -msgstr "" - -#: ipaserver/plugins/internal.py:920 ipaserver/plugins/internal.py:1478 -msgid "Who" -msgstr "" - -#: ipaserver/plugins/internal.py:923 -msgid "Add HBAC service" -msgstr "" - -#: ipaserver/plugins/internal.py:925 -#, python-brace-format -msgid "Add HBAC service '${primary_key}' into HBAC service groups" -msgstr "" - -#: ipaserver/plugins/internal.py:928 -msgid "Remove HBAC services" -msgstr "" - -#: ipaserver/plugins/internal.py:930 -#, python-brace-format -msgid "Remove HBAC service '${primary_key}' from HBAC service groups" -msgstr "" - -#: ipaserver/plugins/internal.py:935 -msgid "Add HBAC service group" -msgstr "" - -#: ipaserver/plugins/internal.py:937 -#, python-brace-format -msgid "Add HBAC services into HBAC service group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:940 -msgid "Remove HBAC service groups" -msgstr "" - -#: ipaserver/plugins/internal.py:942 -#, python-brace-format -msgid "Remove HBAC services from HBAC service group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:945 ipaserver/plugins/service.py:463 -#: ipaserver/plugins/caacl.py:236 -msgid "Services" -msgstr "" - -#: ipaserver/plugins/internal.py:948 -msgid "Access Denied" -msgstr "" - -#: ipaserver/plugins/internal.py:949 -msgid "Access Granted" -msgstr "" - -#: ipaserver/plugins/internal.py:950 -msgid "Include Disabled" -msgstr "" - -#: ipaserver/plugins/internal.py:951 -msgid "Include Enabled" -msgstr "" - -#: ipaserver/plugins/internal.py:952 -msgid "HBAC Test" -msgstr "" - -#: ipaserver/plugins/internal.py:953 -msgid "Matched" -msgstr "" - -#: ipaserver/plugins/internal.py:954 -msgid "Missing values: " -msgstr "" - -#: ipaserver/plugins/internal.py:955 -msgid "New Test" -msgstr "" - -#: ipaserver/plugins/internal.py:956 -msgid "Rules" -msgstr "" - -#: ipaserver/plugins/internal.py:957 -msgid "Run Test" -msgstr "" - -#: ipaserver/plugins/internal.py:958 -#, python-brace-format -msgid "Specify external ${entity}" -msgstr "" - -#: ipaserver/plugins/internal.py:959 -msgid "Unmatched" -msgstr "" - -#: ipaserver/plugins/internal.py:962 -msgid "Add host" -msgstr "" - -#: ipaserver/plugins/internal.py:964 -#, python-brace-format -msgid "Add hosts managing host '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:967 -#, python-brace-format -msgid "Add host '${primary_key}' into host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:970 -#, python-brace-format -msgid "Add host '${primary_key}' into HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:973 -#, python-brace-format -msgid "Add host '${primary_key}' into netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:976 -#, python-brace-format -msgid "Add host '${primary_key}' into roles" -msgstr "" - -#: ipaserver/plugins/internal.py:979 -#, python-brace-format -msgid "Add host '${primary_key}' into sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:981 -msgid "Host Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:982 ipaserver/plugins/internal.py:1311 -msgid "Host Name" -msgstr "" - -#: ipaserver/plugins/internal.py:983 ipaserver/plugins/internal.py:1309 -msgid "Delete Key, Unprovision" -msgstr "" - -#: ipaserver/plugins/internal.py:984 -msgid "Host Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:985 -msgid "Enrolled" -msgstr "" - -#: ipaserver/plugins/internal.py:986 -msgid "Enrollment" -msgstr "" - -#: ipaserver/plugins/internal.py:987 -msgid "Fully Qualified Host Name" -msgstr "" - -#: ipaserver/plugins/internal.py:988 -msgid "Generate OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:989 -msgid "Generated OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:990 -msgid "Kerberos Key" -msgstr "" - -#: ipaserver/plugins/internal.py:991 ipaserver/plugins/internal.py:1312 -msgid "Kerberos Key Not Present" -msgstr "" - -#: ipaserver/plugins/internal.py:992 -msgid "Kerberos Key Present, Host Provisioned" -msgstr "" - -#: ipaserver/plugins/internal.py:993 ipaserver/plugins/internal.py:1672 -msgid "One-Time-Password" -msgstr "" - -#: ipaserver/plugins/internal.py:994 -msgid "One-Time-Password Not Present" -msgstr "" - -#: ipaserver/plugins/internal.py:995 -msgid "One-Time-Password Present" -msgstr "" - -#: ipaserver/plugins/internal.py:996 -msgid "Reset OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:997 -msgid "Reset One-Time-Password" -msgstr "" - -#: ipaserver/plugins/internal.py:998 -msgid "Set OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:999 -msgid "OTP set" -msgstr "" - -#: ipaserver/plugins/internal.py:1000 -msgid "Set One-Time-Password" -msgstr "" - -#: ipaserver/plugins/internal.py:1001 -msgid "Remove hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1003 -#, python-brace-format -msgid "Remove hosts managing host '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1006 -#, python-brace-format -msgid "Remove host '${primary_key}' from host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1009 -#, python-brace-format -msgid "Remove host '${primary_key}' from netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1012 -#, python-brace-format -msgid "Remove host '${primary_key}' from roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1015 -#, python-brace-format -msgid "Remove host '${primary_key}' from HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1018 -#, python-brace-format -msgid "Remove host '${primary_key}' from sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1021 ipaserver/plugins/internal.py:1323 -msgid "Unprovision" -msgstr "" - -#: ipaserver/plugins/internal.py:1022 -msgid "Are you sure you want to unprovision this host?" -msgstr "" - -#: ipaserver/plugins/internal.py:1023 -msgid "Unprovisioning host" -msgstr "" - -#: ipaserver/plugins/internal.py:1024 -msgid "Host unprovisioned" -msgstr "" - -#: ipaserver/plugins/internal.py:1027 -msgid "Add host group" -msgstr "" - -#: ipaserver/plugins/internal.py:1029 -#, python-brace-format -msgid "Add hosts into host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1032 -#, python-brace-format -msgid "Add host groups into host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1035 -#, python-brace-format -msgid "Add host group '${primary_key}' into host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1038 -#, python-brace-format -msgid "Add host group '${primary_key}' into HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1041 -#, python-brace-format -msgid "Add host group '${primary_key}' into netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1044 -#, python-brace-format -msgid "Add host group '${primary_key}' into sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1047 -#, python-brace-format -msgid "Add groups as member managers for host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1051 -#, python-brace-format -msgid "Remove groups from member managers for host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1055 -#, python-brace-format -msgid "Add users as member managers for host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1059 -#, python-brace-format -msgid "Remove users from member managers for host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1063 -msgid "Host Group Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1064 -msgid "Remove host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1066 -#, python-brace-format -msgid "Remove host group '${primary_key}' from host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1069 -#, python-brace-format -msgid "Remove host group '${primary_key}' from netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1072 -#, python-brace-format -msgid "Remove host group '${primary_key}' from HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1075 -#, python-brace-format -msgid "Remove host group '${primary_key}' from sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1078 -#, python-brace-format -msgid "Remove hosts from host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1081 -#, python-brace-format -msgid "Remove host groups from host group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1085 -msgid "User to override" -msgstr "" - -#: ipaserver/plugins/internal.py:1086 -msgid "" -"Enter trusted or IPA user login. Note: search doesn't list users from " -"trusted domains." -msgstr "" - -#: ipaserver/plugins/internal.py:1087 -msgid "Enter trusted user login." -msgstr "" - -#: ipaserver/plugins/internal.py:1088 ipaserver/plugins/internal.py:1694 -msgid "Profile" -msgstr "" - -#: ipaserver/plugins/internal.py:1091 -msgid "Group to override" -msgstr "" - -#: ipaserver/plugins/internal.py:1092 -msgid "" -"Enter trusted or IPA group name. Note: search doesn't list groups from " -"trusted domains." -msgstr "" - -#: ipaserver/plugins/internal.py:1093 -msgid "Enter trusted group name." -msgstr "" - -#: ipaserver/plugins/internal.py:1096 -msgid "Add ID view" -msgstr "" - -#: ipaserver/plugins/internal.py:1097 -msgid "Add group ID override" -msgstr "" - -#: ipaserver/plugins/internal.py:1098 -msgid "Add user ID override" -msgstr "" - -#: ipaserver/plugins/internal.py:1099 -#, python-brace-format -msgid "${primary_key} applies to:" -msgstr "" - -#: ipaserver/plugins/internal.py:1100 ipaserver/plugins/internal.py:1101 -msgid "Applied to hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1102 -msgid "Apply to host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1104 -#, python-brace-format -msgid "Apply ID view '${primary_key}' on hosts of host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1106 -msgid "Apply to hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1108 -#, python-brace-format -msgid "Apply ID view '${primary_key}' on hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1111 -#, python-brace-format -msgid "${primary_key} overrides:" -msgstr "" - -#: ipaserver/plugins/internal.py:1112 -msgid "Remove ID views" -msgstr "" - -#: ipaserver/plugins/internal.py:1113 -msgid "Remove user ID overrides" -msgstr "" - -#: ipaserver/plugins/internal.py:1114 -msgid "Remove group ID overrides" -msgstr "" - -#: ipaserver/plugins/internal.py:1115 -msgid "Un-apply from host groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1116 -msgid "Un-apply ID Views from hosts of hostgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1117 -msgid "Un-apply" -msgstr "" - -#: ipaserver/plugins/internal.py:1118 -msgid "Un-apply from hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1119 -msgid "Un-apply ID Views from hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1120 -msgid "Are you sure you want to un-apply ID view from selected entries?" -msgstr "" - -#: ipaserver/plugins/internal.py:1122 -#, python-brace-format -msgid "Un-apply ID view '${primary_key}' from hosts" -msgstr "" - -#: ipaserver/plugins/internal.py:1126 ipaserver/plugins/krbtpolicy.py:128 -#: ipaserver/plugins/krbtpolicy.py:129 -msgid "Kerberos Ticket Policy" -msgstr "" - -#: ipaserver/plugins/internal.py:1129 -msgid "Add netgroup" -msgstr "" - -#: ipaserver/plugins/internal.py:1131 -#, python-brace-format -msgid "Add netgroup '${primary_key}' into netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1134 -#, python-brace-format -msgid "Add netgroups into netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1137 -#, python-brace-format -msgid "Add user groups into netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1140 -#, python-brace-format -msgid "Add hosts into netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1143 -#, python-brace-format -msgid "Add host groups into netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1146 -#, python-brace-format -msgid "Add users into netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1154 -msgid "Netgroup Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1156 -msgid "Remove netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1158 -#, python-brace-format -msgid "Remove netgroup '${primary_key}' from netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1161 -#, python-brace-format -msgid "Remove user groups from netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1164 -#, python-brace-format -msgid "Remove hosts from netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1167 -#, python-brace-format -msgid "Remove host groups from netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1170 -#, python-brace-format -msgid "Remove netgroups from netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1173 -#, python-brace-format -msgid "Remove users from netgroup '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1182 -msgid "Add OTP token" -msgstr "" - -#: ipaserver/plugins/internal.py:1184 -#, python-brace-format -msgid "Add users managing OTP token '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1186 -#, python-brace-format -msgid "" -"You can use FreeOTP as a software " -"OTP token application." -msgstr "" - -#: ipaserver/plugins/internal.py:1187 -msgid "Configure your token" -msgstr "" - -#: ipaserver/plugins/internal.py:1188 -msgid "" -"Configure your token by scanning the QR code below. Click on the QR code if " -"you see this on the device you want to configure." -msgstr "" - -#: ipaserver/plugins/internal.py:1189 -msgid "OTP Token Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1190 -msgid "Disable token" -msgstr "" - -#: ipaserver/plugins/internal.py:1191 -msgid "Enable token" -msgstr "" - -#: ipaserver/plugins/internal.py:1192 -msgid "Remove OTP tokens" -msgstr "" - -#: ipaserver/plugins/internal.py:1194 -#, python-brace-format -msgid "Remove users managing OTP token '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1196 -msgid "Show QR code" -msgstr "" - -#: ipaserver/plugins/internal.py:1197 -msgid "Show configuration uri" -msgstr "" - -#: ipaserver/plugins/internal.py:1198 -msgid "Counter-based (HOTP)" -msgstr "" - -#: ipaserver/plugins/internal.py:1199 -msgid "Time-based (TOTP)" -msgstr "" - -#: ipaserver/plugins/internal.py:1202 -msgid "Add Custom Attribute" -msgstr "" - -#: ipaserver/plugins/internal.py:1205 -msgid "Permission settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1206 -msgid "Attribute breakdown" -msgstr "" - -#: ipaserver/plugins/internal.py:1207 ipaserver/plugins/dns.py:1035 -#: ipaserver/plugins/dns.py:1366 ipaclient/remote_plugins/2_114/dns.py:514 -msgid "Target" -msgstr "" - -#: ipaserver/plugins/internal.py:1210 -msgid "Privilege Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1213 -msgid "Public key:" -msgstr "" - -#: ipaserver/plugins/internal.py:1214 -msgid "Set public key" -msgstr "" - -#: ipaserver/plugins/internal.py:1215 ipaserver/plugins/internal.py:1333 -msgid "Show/Set key" -msgstr "" - -#: ipaserver/plugins/internal.py:1216 ipaserver/plugins/internal.py:1334 -msgid "Modified: key not set" -msgstr "" - -#: ipaserver/plugins/internal.py:1217 ipaserver/plugins/internal.py:1335 -msgid "Modified" -msgstr "" - -#: ipaserver/plugins/internal.py:1218 ipaserver/plugins/internal.py:1336 -msgid "New: key not set" -msgstr "" - -#: ipaserver/plugins/internal.py:1219 ipaserver/plugins/internal.py:1337 -msgid "New: key set" -msgstr "" - -#: ipaserver/plugins/internal.py:1222 -msgid "Add password policy" -msgstr "" - -#: ipaserver/plugins/internal.py:1224 -msgid "Remove password policies" -msgstr "" - -#: ipaserver/plugins/internal.py:1227 -msgid "Add ID range" -msgstr "" - -#: ipaserver/plugins/internal.py:1228 -msgid "Range Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1229 -msgid "Base ID" -msgstr "" - -#: ipaserver/plugins/internal.py:1230 -msgid "Primary RID base" -msgstr "" - -#: ipaserver/plugins/internal.py:1231 -msgid "Range size" -msgstr "" - -#: ipaserver/plugins/internal.py:1232 -msgid "Domain SID" -msgstr "" - -#: ipaserver/plugins/internal.py:1233 -msgid "Secondary RID base" -msgstr "" - -#: ipaserver/plugins/internal.py:1234 -msgid "Remove ID ranges" -msgstr "" - -#: ipaserver/plugins/internal.py:1236 ipaserver/dcerpc_common.py:37 -msgid "Active Directory domain" -msgstr "" - -#: ipaserver/plugins/internal.py:1237 -msgid "Active Directory domain with POSIX attributes" -msgstr "" - -#: ipaserver/plugins/internal.py:1238 -msgid "Detect" -msgstr "" - -#: ipaserver/plugins/internal.py:1239 -msgid "Local domain" -msgstr "" - -#: ipaserver/plugins/internal.py:1240 -msgid "IPA trust" -msgstr "" - -#: ipaserver/plugins/internal.py:1241 -msgid "Active Directory winsync" -msgstr "" - -#: ipaserver/plugins/internal.py:1244 -msgid "Add RADIUS server" -msgstr "" - -#: ipaserver/plugins/internal.py:1245 -msgid "RADIUS Proxy Server Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1246 -msgid "Remove RADIUS servers" -msgstr "" - -#: ipaserver/plugins/internal.py:1249 ipaserver/plugins/realmdomains.py:107 -#: ipaserver/plugins/realmdomains.py:108 -msgid "Realm Domains" -msgstr "" - -#: ipaserver/plugins/internal.py:1250 -msgid "Check DNS" -msgstr "" - -#: ipaserver/plugins/internal.py:1251 -msgid "Do you also want to perform DNS check?" -msgstr "" - -#: ipaserver/plugins/internal.py:1252 -msgid "Force Update" -msgstr "" - -#: ipaserver/plugins/internal.py:1257 -msgid "Add SELinux user map" -msgstr "" - -#: ipaserver/plugins/internal.py:1259 -#, python-brace-format -msgid "Add user groups into SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1262 -#, python-brace-format -msgid "Add host groups into SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1265 -#, python-brace-format -msgid "Add hosts into SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1268 -#, python-brace-format -msgid "Add users into SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1273 -msgid "Remove selinux user maps" -msgstr "" - -#: ipaserver/plugins/internal.py:1275 -#, python-brace-format -msgid "Remove user groups from SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1278 -#, python-brace-format -msgid "Remove host groups from SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1281 -#, python-brace-format -msgid "Remove hosts from SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1284 -#, python-brace-format -msgid "Remove users from SELinux user map '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1291 -msgid "Server Roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1292 -msgid "Server Role" -msgstr "" - -#: ipaserver/plugins/internal.py:1295 -msgid "Warning: Consider service replication" -msgstr "" - -#: ipaserver/plugins/internal.py:1296 -msgid "" -"It is strongly recommended to keep the following services installed on more " -"than one server:" -msgstr "" - -#: ipaserver/plugins/internal.py:1297 -msgid "Delete Server" -msgstr "" - -#: ipaserver/plugins/internal.py:1298 -msgid "" -"Deleting a server removes it permanently from the topology. Note that this " -"is a non-reversible action." -msgstr "" - -#: ipaserver/plugins/internal.py:1301 -msgid "Add service" -msgstr "" - -#: ipaserver/plugins/internal.py:1303 -#, python-brace-format -msgid "Add hosts managing service '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1306 -#, python-brace-format -msgid "Add service '${primary_key}' into roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1308 -msgid "Service Certificate" -msgstr "" - -#: ipaserver/plugins/internal.py:1310 -msgid "Service Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1313 -msgid "Provisioning" -msgstr "" - -#: ipaserver/plugins/internal.py:1314 -msgid "Remove services" -msgstr "" - -#: ipaserver/plugins/internal.py:1316 -#, python-brace-format -msgid "Remove service '${primary_key}' from roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1319 -#, python-brace-format -msgid "Remove hosts managing service '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1321 ipaserver/plugins/internal.py:1646 -#: ipaserver/plugins/dns.py:1311 ipaserver/plugins/service.py:464 -#: ipaserver/plugins/hbactest.py:285 ipaclient/remote_plugins/2_114/dns.py:721 -msgid "Service" -msgstr "" - -#: ipaserver/plugins/internal.py:1324 -msgid "Are you sure you want to unprovision this service?" -msgstr "" - -#: ipaserver/plugins/internal.py:1325 -msgid "Unprovisioning service" -msgstr "" - -#: ipaserver/plugins/internal.py:1326 -msgid "Service unprovisioned" -msgstr "" - -#: ipaserver/plugins/internal.py:1327 -msgid "Kerberos Key Present, Service Provisioned" -msgstr "" - -#: ipaserver/plugins/internal.py:1330 -msgid "SSH public keys" -msgstr "" - -#: ipaserver/plugins/internal.py:1331 -msgid "SSH public key:" -msgstr "" - -#: ipaserver/plugins/internal.py:1332 -msgid "Set SSH key" -msgstr "" - -#: ipaserver/plugins/internal.py:1340 -msgid "Are you sure you want to activate selected users?" -msgstr "" - -#: ipaserver/plugins/internal.py:1341 -#, python-brace-format -msgid "Are you sure you want to activate ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:1342 -#, python-brace-format -msgid "${count} user(s) activated" -msgstr "" - -#: ipaserver/plugins/internal.py:1343 -msgid "Add stage user" -msgstr "" - -#: ipaserver/plugins/internal.py:1344 -msgid "Stage users" -msgstr "" - -#: ipaserver/plugins/internal.py:1345 -msgid "Preserved users" -msgstr "" - -#: ipaserver/plugins/internal.py:1346 -msgid "Remove preserved users" -msgstr "" - -#: ipaserver/plugins/internal.py:1347 -msgid "Remove stage users" -msgstr "" - -#: ipaserver/plugins/internal.py:1348 -msgid "Are you sure you want to stage selected users?" -msgstr "" - -#: ipaserver/plugins/internal.py:1349 -#, python-brace-format -msgid "${count} users(s) staged" -msgstr "" - -#: ipaserver/plugins/internal.py:1350 -#, python-brace-format -msgid "Are you sure you want to stage ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:1351 -msgid "Are you sure you want to restore selected users?" -msgstr "" - -#: ipaserver/plugins/internal.py:1352 -#, python-brace-format -msgid "Are you sure you want to restore ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:1353 -#, python-brace-format -msgid "${count} user(s) restored" -msgstr "" - -#: ipaserver/plugins/internal.py:1354 -msgid "User categories" -msgstr "" - -#: ipaserver/plugins/internal.py:1357 -msgid "Add sudo command" -msgstr "" - -#: ipaserver/plugins/internal.py:1359 -#, python-brace-format -msgid "Add sudo command '${primary_key}' into sudo command groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1363 -msgid "Remove sudo commands" -msgstr "" - -#: ipaserver/plugins/internal.py:1365 -#, python-brace-format -msgid "Remove sudo command '${primary_key}' from sudo command groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1370 -msgid "Add sudo command group" -msgstr "" - -#: ipaserver/plugins/internal.py:1372 -#, python-brace-format -msgid "Add sudo commands into sudo command group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1375 ipaserver/plugins/sudocmdgroup.py:134 -msgid "Commands" -msgstr "" - -#: ipaserver/plugins/internal.py:1376 -msgid "Remove sudo command groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1378 -#, python-brace-format -msgid "Remove sudo commands from sudo command group '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1383 -msgid "Add sudo rule" -msgstr "" - -#: ipaserver/plugins/internal.py:1384 -msgid "Add sudo option" -msgstr "" - -#: ipaserver/plugins/internal.py:1386 -#, python-brace-format -msgid "Add allow sudo commands into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1390 -#, python-brace-format -msgid "Add allow sudo command groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1394 -#, python-brace-format -msgid "Add deny sudo commands into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1398 -#, python-brace-format -msgid "Add deny sudo command groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1402 -#, python-brace-format -msgid "Add user groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1405 -#, python-brace-format -msgid "Add host groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1408 -#, python-brace-format -msgid "Add hosts into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1411 -#, python-brace-format -msgid "Add RunAs users into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1414 -#, python-brace-format -msgid "Add RunAs user groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1417 -#, python-brace-format -msgid "Add RunAs groups into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1420 -#, python-brace-format -msgid "Add users into sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1422 -msgid "Allow" -msgstr "" - -#: ipaserver/plugins/internal.py:1423 -msgid "Any Command" -msgstr "" - -#: ipaserver/plugins/internal.py:1424 -msgid "Any Group" -msgstr "" - -#: ipaserver/plugins/internal.py:1427 -msgid "Run Commands" -msgstr "" - -#: ipaserver/plugins/internal.py:1428 -msgid "Deny" -msgstr "" - -#: ipaserver/plugins/internal.py:1430 -msgid "Access this host" -msgstr "" - -#: ipaserver/plugins/internal.py:1432 -msgid "Option added" -msgstr "" - -#: ipaserver/plugins/internal.py:1433 -#, python-brace-format -msgid "${count} option(s) removed" -msgstr "" - -#: ipaserver/plugins/internal.py:1435 -msgid "Remove sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1437 -#, python-brace-format -msgid "Remove allow sudo commands from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1441 -#, python-brace-format -msgid "Remove allow sudo command groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1445 -#, python-brace-format -msgid "Remove deny sudo commands from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1449 -#, python-brace-format -msgid "Remove deny sudo command groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1453 -#, python-brace-format -msgid "Remove user groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1456 -#, python-brace-format -msgid "Remove host groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1459 -#, python-brace-format -msgid "Remove hosts from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1462 -#, python-brace-format -msgid "Remove RunAs users from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1465 -#, python-brace-format -msgid "Remove RunAs user groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1468 -#, python-brace-format -msgid "Remove RunAs groups from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1471 -#, python-brace-format -msgid "Remove users from sudo rule '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1473 -msgid "As Whom" -msgstr "" - -#: ipaserver/plugins/internal.py:1474 -msgid "Specified Commands and Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1475 -msgid "Specified Groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1481 -msgid "Remove sudo options" -msgstr "" - -#: ipaserver/plugins/internal.py:1484 -msgid "Autogenerated" -msgstr "" - -#: ipaserver/plugins/internal.py:1485 -msgid "Segment details" -msgstr "" - -#: ipaserver/plugins/internal.py:1486 -msgid "Replication configuration" -msgstr "" - -#: ipaserver/plugins/internal.py:1487 -#, python-brace-format -msgid "Managed topology requires minimal domain level ${domainlevel}" -msgstr "" - -#: ipaserver/plugins/internal.py:1490 -msgid "Add IPA location" -msgstr "" - -#: ipaserver/plugins/internal.py:1492 -#, python-brace-format -msgid "Add IPA server into IPA location '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1494 -msgid "Remove IPA locations" -msgstr "" - -#: ipaserver/plugins/internal.py:1496 -#, python-brace-format -msgid "Remove IPA servers from IPA location '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1500 -msgid "Add topology segment" -msgstr "" - -#: ipaserver/plugins/internal.py:1501 -msgid "Remove topology segments" -msgstr "" - -#: ipaserver/plugins/internal.py:1504 -msgid "Account" -msgstr "" - -#: ipaserver/plugins/internal.py:1505 -msgid "Add trust" -msgstr "" - -#: ipaserver/plugins/internal.py:1506 -msgid "Administrative account" -msgstr "" - -#: ipaserver/plugins/internal.py:1507 -msgid "SID blacklists" -msgstr "" - -#: ipaserver/plugins/internal.py:1508 -msgid "Trust Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1510 -msgid "Establish using" -msgstr "" - -#: ipaserver/plugins/internal.py:1511 -msgid "Fetch domains" -msgstr "" - -#: ipaserver/plugins/internal.py:1512 ipaserver/plugins/trust.py:541 -#: ipaserver/plugins/trust.py:1585 ipaclient/remote_plugins/2_114/trust.py:115 -msgid "Domain NetBIOS name" -msgstr "" - -#: ipaserver/plugins/internal.py:1513 ipaserver/plugins/trust.py:545 -#: ipaserver/plugins/trust.py:1588 ipaclient/remote_plugins/2_114/trust.py:119 -msgid "Domain Security Identifier" -msgstr "" - -#: ipaserver/plugins/internal.py:1514 -msgid "Pre-shared password" -msgstr "" - -#: ipaserver/plugins/internal.py:1515 -msgid "Remove trusts" -msgstr "" - -#: ipaserver/plugins/internal.py:1516 -msgid "Remove domains" -msgstr "" - -#: ipaserver/plugins/internal.py:1517 ipaserver/plugins/trust.py:556 -msgid "Trust direction" -msgstr "" - -#: ipaserver/plugins/internal.py:1518 ipaserver/plugins/trust.py:564 -msgid "Trust status" -msgstr "" - -#: ipaserver/plugins/internal.py:1519 ipaserver/plugins/trust.py:560 -msgid "Trust type" -msgstr "" - -#: ipaserver/plugins/internal.py:1520 -msgid "Alternative UPN suffixes" -msgstr "" - -#: ipaserver/plugins/internal.py:1524 -msgid "User attributes for SMB services" -msgstr "" - -#: ipaserver/plugins/internal.py:1527 -msgid "Path to a script executed on a Windows system at logon" -msgstr "" - -#: ipaserver/plugins/internal.py:1530 -msgid "Path to a user profile, in UNC format \\\\server\\share\\" -msgstr "" - -#: ipaserver/plugins/internal.py:1533 -msgid "Path to a user home directory, in UNC format" -msgstr "" - -#: ipaserver/plugins/internal.py:1536 -msgid "Drive to mount a home directory" -msgstr "" - -#: ipaserver/plugins/internal.py:1543 -msgid "Account Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1544 -msgid "Account Status" -msgstr "" - -#: ipaserver/plugins/internal.py:1545 -msgid "Active users" -msgstr "" - -#: ipaserver/plugins/internal.py:1546 -msgid "Add user" -msgstr "" - -#: ipaserver/plugins/internal.py:1548 -#, python-brace-format -msgid "Add user '${primary_key}' into user groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1551 -#, python-brace-format -msgid "Add user '${primary_key}' into HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1554 -#, python-brace-format -msgid "Add user '${primary_key}' into netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1557 -#, python-brace-format -msgid "Add user '${primary_key}' into roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1560 -#, python-brace-format -msgid "Add user '${primary_key}' into sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1562 -msgid "Contact Settings" -msgstr "" - -#: ipaserver/plugins/internal.py:1563 -msgid "Delete mode" -msgstr "" - -#: ipaserver/plugins/internal.py:1564 -msgid "Employee Information" -msgstr "" - -#: ipaserver/plugins/internal.py:1565 -msgid "Error changing account status" -msgstr "" - -#: ipaserver/plugins/internal.py:1566 -msgid "Password expiration" -msgstr "" - -#: ipaserver/plugins/internal.py:1567 -msgid "Mailing Address" -msgstr "" - -#: ipaserver/plugins/internal.py:1568 -msgid "Misc. Information" -msgstr "" - -#: ipaserver/plugins/internal.py:1569 -msgid "delete" -msgstr "" - -#: ipaserver/plugins/internal.py:1570 -msgid "preserve" -msgstr "" - -#: ipaserver/plugins/internal.py:1571 -msgid "No private group" -msgstr "" - -#: ipaserver/plugins/internal.py:1572 -msgid "Remove users" -msgstr "" - -#: ipaserver/plugins/internal.py:1574 -#, python-brace-format -msgid "Remove user '${primary_key}' from user groups" -msgstr "" - -#: ipaserver/plugins/internal.py:1577 -#, python-brace-format -msgid "Remove user '${primary_key}' from netgroups" -msgstr "" - -#: ipaserver/plugins/internal.py:1580 -#, python-brace-format -msgid "Remove user '${primary_key}' from roles" -msgstr "" - -#: ipaserver/plugins/internal.py:1583 -#, python-brace-format -msgid "Remove user '${primary_key}' from HBAC rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1586 -#, python-brace-format -msgid "Remove user '${primary_key}' from sudo rules" -msgstr "" - -#: ipaserver/plugins/internal.py:1588 -#, python-brace-format -msgid "" -"Are you sure you want to ${action} the user?
The change will take effect " -"immediately." -msgstr "" - -#: ipaserver/plugins/internal.py:1589 -#, python-brace-format -msgid "Click to ${action}" -msgstr "" - -#: ipaserver/plugins/internal.py:1590 -msgid "Unlock" -msgstr "" - -#: ipaserver/plugins/internal.py:1591 -#, python-brace-format -msgid "Are you sure you want to unlock user ${object}?" -msgstr "" - -#: ipaserver/plugins/internal.py:1594 -msgid "Add vault" -msgstr "" - -#: ipaserver/plugins/internal.py:1596 -#, python-brace-format -msgid "Add user groups into members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1599 -#, python-brace-format -msgid "Add services into members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1602 -#, python-brace-format -msgid "Add users into members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1605 -#, python-brace-format -msgid "Add user groups into owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1608 -#, python-brace-format -msgid "Add services into owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1611 -#, python-brace-format -msgid "Add users into owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1614 -msgid "" -"Secrets can be added/retrieved to vault only by using vault-archive and " -"vault-retrieve from CLI." -msgstr "" - -#: ipaserver/plugins/internal.py:1618 -msgid "" -"Content of 'standard' vaults can be seen by users with higher privileges " -"(admins)." -msgstr "" - -#: ipaserver/plugins/internal.py:1621 -msgid "Asymmetric" -msgstr "" - -#: ipaserver/plugins/internal.py:1622 -msgid "Vaults Config" -msgstr "" - -#: ipaserver/plugins/internal.py:1624 -msgid "Members" -msgstr "" - -#: ipaserver/plugins/internal.py:1625 -msgid "My User Vaults" -msgstr "" - -#: ipaserver/plugins/internal.py:1626 -msgid "Owners" -msgstr "" - -#: ipaserver/plugins/internal.py:1627 -msgid "Remove vaults" -msgstr "" - -#: ipaserver/plugins/internal.py:1629 -#, python-brace-format -msgid "Remove user groups from members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1632 -#, python-brace-format -msgid "Remove services from members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1635 -#, python-brace-format -msgid "Remove users from members of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1638 -#, python-brace-format -msgid "Remove user groups from owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1641 -#, python-brace-format -msgid "Remove services from owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1644 -#, python-brace-format -msgid "Remove users from owners of vault '${primary_key}'" -msgstr "" - -#: ipaserver/plugins/internal.py:1647 -msgid "Service Vaults" -msgstr "" - -#: ipaserver/plugins/internal.py:1648 -msgid "Shared" -msgstr "" - -#: ipaserver/plugins/internal.py:1649 -msgid "Shared Vaults" -msgstr "" - -#: ipaserver/plugins/internal.py:1650 -msgid "Standard" -msgstr "" - -#: ipaserver/plugins/internal.py:1651 -msgid "Symmetric" -msgstr "" - -#: ipaserver/plugins/internal.py:1652 -msgid "Vault Type" -msgstr "" - -#: ipaserver/plugins/internal.py:1654 -msgid "" -"Only standard vaults can be created in WebUI, use CLI for other types of " -"vaults." -msgstr "" - -#: ipaserver/plugins/internal.py:1658 -msgid "User Vaults" -msgstr "" - -#: ipaserver/plugins/internal.py:1663 -msgid "Current password is required" -msgstr "" - -#: ipaserver/plugins/internal.py:1664 -#, python-brace-format -msgid "Your password expires in ${days} days." -msgstr "" - -#: ipaserver/plugins/internal.py:1665 -msgid "First OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:1669 -msgid "New password is required" -msgstr "" - -#: ipaserver/plugins/internal.py:1671 -msgid "" -" One-Time-Password(OTP): " -"Generate new OTP code for each OTP field." -msgstr "" - -#: ipaserver/plugins/internal.py:1673 -msgid "Token synchronization failed" -msgstr "" - -#: ipaserver/plugins/internal.py:1674 -msgid "The username, password or token codes are not correct" -msgstr "" - -#: ipaserver/plugins/internal.py:1675 -msgid "Token was synchronized" -msgstr "" - -#: ipaserver/plugins/internal.py:1678 -msgid "Password change complete" -msgstr "" - -#: ipaserver/plugins/internal.py:1680 -msgid "Your password has expired. Please enter a new password." -msgstr "" - -#: ipaserver/plugins/internal.py:1681 -msgid "Passwords must match" -msgstr "" - -#: ipaserver/plugins/internal.py:1682 -msgid "Password reset was not successful." -msgstr "" - -#: ipaserver/plugins/internal.py:1684 -msgid "Reset your password." -msgstr "" - -#: ipaserver/plugins/internal.py:1685 -msgid "Second OTP" -msgstr "" - -#: ipaserver/plugins/internal.py:1686 ipaclient/plugins/otptoken.py:149 -msgid "Token ID" -msgstr "" - -#: ipaserver/plugins/internal.py:1687 -msgid "Verify Password" -msgstr "" - -#: ipaserver/plugins/internal.py:1693 ipaclient/plugins/vault.py:373 -msgid "Change password" -msgstr "" - -#: ipaserver/plugins/internal.py:1697 -msgid "Are you sure you want to delete selected entries?" -msgstr "" - -#: ipaserver/plugins/internal.py:1698 -#, python-brace-format -msgid "${count} item(s) deleted" -msgstr "" - -#: ipaserver/plugins/internal.py:1699 -msgid "Are you sure you want to disable selected entries?" -msgstr "" - -#: ipaserver/plugins/internal.py:1700 -#, python-brace-format -msgid "${count} item(s) disabled" -msgstr "" - -#: ipaserver/plugins/internal.py:1701 -msgid "Are you sure you want to enable selected entries?" -msgstr "" - -#: ipaserver/plugins/internal.py:1702 -#, python-brace-format -msgid "${count} item(s) enabled" -msgstr "" - -#: ipaserver/plugins/internal.py:1703 -msgid "Some entries were not deleted" -msgstr "" - -#: ipaserver/plugins/internal.py:1706 -msgid "Quick Links" -msgstr "" - -#: ipaserver/plugins/internal.py:1707 -msgid "Select All" -msgstr "" - -#: ipaserver/plugins/internal.py:1708 -#, python-brace-format -msgid "" -"Query returned more results than the configured size limit. Displaying the " -"first ${counter} results." -msgstr "" - -#: ipaserver/plugins/internal.py:1709 -msgid "Unselect All" -msgstr "" - -#: ipaserver/plugins/internal.py:1713 -msgid "" -"

Browser Kerberos Setup

\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1717 -msgid "" -"

Firefox

\n" -"\n" -"

\n" -" You can configure Firefox to use Kerberos for Single Sign-on. " -"The following instructions will guide you in configuring your web browser to " -"send your Kerberos credentials to the appropriate Key Distribution Center " -"which enables Single Sign-on.\n" -"

\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1729 -msgid "" -"
    \n" -"
  1. \n" -"

    \n" -"Import " -"Certificate Authority certificate\n" -"

    \n" -"

    \n" -" Make sure you select all three checkboxes.\n" -"

    \n" -"
    2. \n" -"
  2. \n" -" In the address bar of Firefox, type about:config to display the list of current configuration options.\n" -"
    3. \n" -"
  3. \n" -" In the Filter field, type negotiate to restrict " -"the list of options.\n" -"
    4. \n" -"
  4. \n" -" Double-click the network.negotiate-auth.trusted-uris entry to display the Enter string value dialog box.\n" -"
    5. \n" -"
  5. \n" -" Enter the name of the domain against which you want to " -"authenticate, for example, .example.com.\n" -"
    6. \n" -"
  6. Return to Web UI
    7. \n" -"
\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1765 -msgid "" -"

Chrome

\n" -"\n" -"

\n" -" You can configure Chrome to use Kerberos for Single Sign-on. The " -"following instructions will guide you in configuring your web browser to " -"send your Kerberos credentials to the appropriate Key Distribution Center " -"which enables Single Sign-on.\n" -"

\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1777 -msgid "" -"

Import CA Certificate

\n" -"
    \n" -"
  1. \n" -" Download the CA certificate. " -"Alternatively, if the host is also an IdM client, you can find the " -"certificate in /etc/ipa/ca.crt.\n" -"
    2. \n" -"
  2. \n" -" Click the menu button with the Customize and control " -"Google Chrome tooltip, which is by default in the top right-hand corner " -"of Chrome, and click Settings.\n" -"
    3. \n" -"
  3. \n" -" Click Show advanced settings to display more " -"options, and then click the Manage certificates button located " -"under the HTTPS/SSL heading.\n" -"
    4. \n" -"
  4. \n" -" In the Authorities tab, click the Import " -"button at the bottom.\n" -"
    5. \n" -"
  5. Select the CA certificate file that you downloaded in the first step.\n" -"
\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1806 -msgid "" -"

\n" -" Enable SPNEGO (Simple and Protected GSSAPI Negotiation " -"Mechanism) to Use Kerberos Authentication\n" -" in Chrome\n" -"

\n" -"
    \n" -"
  1. \n" -" Make sure you have the necessary directory created by " -"running:\n" -"
    \n" -" [root@client]# mkdir -p /etc/opt/chrome/policies/" -"managed/\n" -"
    \n" -"
    2. \n" -"
  2. \n" -" Create a new /etc/opt/chrome/policies/managed/mydomain." -"json file with write privileges limited to the system administrator " -"or root, and include the following line:\n" -"
    \n" -" { \"AuthServerWhitelist\": \"*.example.com\" }\n" -"
    \n" -"
    \n" -" You can do this by running:\n" -"
    \n" -"
    \n" -" [root@server]# echo '{ \"AuthServerWhitelist\": \"*.example.com\" }' > /etc/opt/chrome/policies/" -"managed/mydomain.json\n" -"
    \n" -"
    3. \n" -"
\n" -"
    \n" -"

    \n" -"Note: If using Chromium, use /etc/chromium/policies/" -"managed/ instead of /etc/opt/chrome/policies/managed/ " -"for the two SPNEGO Chrome configuration steps above.\n" -"

    \n" -"
\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1851 -msgid "" -"

Internet Explorer

\n" -"

WARNING: Internet Explorer is no longer a supported " -"browser.

\n" -"

\n" -" Once you are able to log into the workstation with your kerberos " -"key you are now able to use that ticket in Internet Explorer.\n" -"

\n" -"

\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1862 -msgid "" -"Log into the Windows machine using an account of your Kerberos realm " -"(administrative domain)\n" -"

\n" -"

\n" -"In Internet Explorer, click Tools, and then click Internet Options.\n" -"

\n" -"
\n" -"
    \n" -"
  1. Click the Security tab
    2. \n" -"
  2. Click Local intranet
    3. \n" -"
  3. Click Sites
    4. \n" -"
  4. Click Advanced
    5. \n" -"
  5. Add your domain to the list
    6. \n" -"
\n" -"
    \n" -"
  1. Click the Security tab
    2. \n" -"
  2. Click Local intranet
    3. \n" -"
  3. Click Custom Level
    4. \n" -"
  4. Select Automatic logon only in Intranet zone
    5. \n" -"
\n" -"\n" -"
    \n" -"
  1. Visit a kerberized web site using IE (You must use the fully-qualified " -"Domain Name in the URL)
    2. \n" -"
  2. You are all set.
    3. \n" -"
\n" -"
\n" -"\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1899 -msgid "Working" -msgstr "" - -#: ipaserver/plugins/internal.py:1902 -msgid "Audit" -msgstr "" - -#: ipaserver/plugins/internal.py:1903 -msgid "Authentication" -msgstr "" - -#: ipaserver/plugins/internal.py:1904 ipaserver/plugins/automember.py:818 -msgid "Automember" -msgstr "" - -#: ipaserver/plugins/internal.py:1905 -msgid "Automount" -msgstr "" - -#: ipaserver/plugins/internal.py:1907 -msgid "DNS" -msgstr "" - -#: ipaserver/plugins/internal.py:1908 -msgid "Host-Based Access Control" -msgstr "" - -#: ipaserver/plugins/internal.py:1909 -msgid "Identity" -msgstr "" - -#: ipaserver/plugins/internal.py:1911 -msgid "Network Services" -msgstr "" - -#: ipaserver/plugins/internal.py:1912 -msgid "Policy" -msgstr "" - -#: ipaserver/plugins/internal.py:1913 -msgid "Role-Based Access Control" -msgstr "" - -#: ipaserver/plugins/internal.py:1914 -msgid "Sudo" -msgstr "" - -#: ipaserver/plugins/internal.py:1915 -msgid "Topology" -msgstr "" - -#: ipaserver/plugins/internal.py:1916 ipaserver/plugins/trust.py:530 -msgid "Trusts" -msgstr "" - -#: ipaserver/plugins/internal.py:1918 -msgid "True" -msgstr "" - -#: ipaserver/plugins/internal.py:1920 -msgid "" -"

Unable to verify your Kerberos credentials

\n" -"

\n" -" Please make sure that you have valid Kerberos tickets " -"(obtainable via kinit), and that you have configured your " -"browser correctly.\n" -"

\n" -"\n" -"

Browser configuration

\n" -"\n" -"
\n" -"

\n" -" If this is your first time, please configure your browser.\n" -"

\n" -"
\n" -msgstr "" - -#: ipaserver/plugins/internal.py:1937 -msgid "API Browser" -msgstr "" - -#: ipaserver/plugins/internal.py:1938 -msgid "First" -msgstr "" - -#: ipaserver/plugins/internal.py:1939 -msgid "Last" -msgstr "" - -#: ipaserver/plugins/internal.py:1940 -msgid "Next" -msgstr "" - -#: ipaserver/plugins/internal.py:1941 -msgid "Page" -msgstr "" - -#: ipaserver/plugins/internal.py:1942 -msgid "Prev" -msgstr "" - -#: ipaserver/plugins/internal.py:1943 -msgid "Undo" -msgstr "" - -#: ipaserver/plugins/internal.py:1944 -msgid "Undo this change." -msgstr "" - -#: ipaserver/plugins/internal.py:1945 -msgid "Undo All" -msgstr "" - -#: ipaserver/plugins/internal.py:1946 -msgid "Undo all changes in this field." -msgstr "" - -#: ipaserver/plugins/internal.py:1948 -msgid "Text does not match field pattern" -msgstr "" - -#: ipaserver/plugins/internal.py:1949 -msgid "Must be an UTC date/time value (e.g., \"2014-01-20 17:58:01Z\")" -msgstr "" - -#: ipaserver/plugins/internal.py:1950 -msgid "Must be a decimal number" -msgstr "" - -#: ipaserver/plugins/internal.py:1951 -msgid "Format error" -msgstr "" - -#: ipaserver/plugins/internal.py:1952 -msgid "Must be an integer" -msgstr "" - -#: ipaserver/plugins/internal.py:1953 -msgid "Not a valid IP address" -msgstr "" - -#: ipaserver/plugins/internal.py:1954 -msgid "Not a valid IPv4 address" -msgstr "" - -#: ipaserver/plugins/internal.py:1955 -msgid "Not a valid IPv6 address" -msgstr "" - -#: ipaserver/plugins/internal.py:1956 -#, python-brace-format -msgid "Maximum value is ${value}" -msgstr "" - -#: ipaserver/plugins/internal.py:1957 -#, python-brace-format -msgid "Minimum value is ${value}" -msgstr "" - -#: ipaserver/plugins/internal.py:1958 -msgid "Not a valid network address (examples: 2001:db8::/64, 192.0.2.0/24)" -msgstr "" - -#: ipaserver/plugins/internal.py:1959 -msgid "Parse error" -msgstr "" - -#: ipaserver/plugins/internal.py:1960 -msgid "Must be a positive number" -msgstr "" - -#: ipaserver/plugins/internal.py:1961 -#, python-brace-format -msgid "'${port}' is not a valid port" -msgstr "" - -#: ipaserver/plugins/internal.py:1962 -msgid "Required field" -msgstr "" - -#: ipaserver/plugins/internal.py:1963 -msgid "Unsupported value" -msgstr "" - -#: ipaserver/plugins/internal.py:1968 -msgid "Dict of I18N messages" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:34 -msgid "" -"\n" -"Realm domains\n" -"\n" -"Manage the list of domains associated with IPA realm.\n" -"\n" -"This list is useful for Domain Controllers from other realms which have\n" -"established trust with this IPA realm. They need the information to know\n" -"which request should be forwarded to KDC of this IPA realm.\n" -"\n" -"Automatic management: a domain is automatically added to the realm domains\n" -"list when a new DNS Zone managed by IPA is created. Same applies for " -"deletion.\n" -"\n" -"Externally managed DNS: domains which are not managed in IPA server DNS\n" -"need to be manually added to the list using ipa realmdomains-mod command.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Display the current list of realm domains:\n" -" ipa realmdomains-show\n" -"\n" -" Replace the list of realm domains:\n" -" ipa realmdomains-mod --domain=example.com\n" -" ipa realmdomains-mod --domain={example1.com,example2.com,example3.com}\n" -"\n" -" Add a domain to the list of realm domains:\n" -" ipa realmdomains-mod --add-domain=newdomain.com\n" -"\n" -" Delete a domain from the list of realm domains:\n" -" ipa realmdomains-mod --del-domain=olddomain.com\n" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:85 -msgid "Realm domains" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:121 -msgid "Add domain" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:127 -msgid "Delete domain" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:134 -msgid "" -"\n" -" Modify realm domains\n" -"\n" -" DNS check: When manually adding a domain to the list, a DNS check is\n" -" performed by default. It ensures that the domain is associated with\n" -" the IPA realm, by checking whether the domain has a _kerberos TXT " -"record\n" -" containing the IPA realm name. This check can be skipped by specifying\n" -" --force option.\n" -"\n" -" Removal: when a realm domain which has a matching DNS zone managed by\n" -" IPA is being removed, a corresponding _kerberos TXT record in the zone " -"is\n" -" removed automatically as well. Other records in the zone or the zone\n" -" itself are not affected.\n" -" " -msgstr "" - -#: ipaserver/plugins/realmdomains.py:152 -msgid "Force adding domain even if not in DNS" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:177 -#, python-format -msgid "" -"DNS zone for each realmdomain must contain SOA or NS records. No records " -"found for: %s" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:203 -#, python-format -msgid "The following domains do not belong to this realm: %(domains)s" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:218 -#, python-format -msgid "" -"The realm of the following domains could not be detected: %(domains)s. If " -"these are domains that belong to the this realm, please create a _kerberos " -"TXT record containing \"%(realm)s\" in each of them." -msgstr "" - -#: ipaserver/plugins/realmdomains.py:241 -msgid "" -"The --domain option cannot be used together with --add-domain or --del-" -"domain. Use --domain to specify the whole realm domain list explicitly, to " -"add/remove individual domains, use --add-domain/del-domain." -msgstr "" - -#: ipaserver/plugins/realmdomains.py:252 -msgid "IPA server domain cannot be omitted" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:274 -msgid "IPA server domain cannot be deleted" -msgstr "" - -#: ipaserver/plugins/realmdomains.py:361 -msgid "Display the list of realm domains." -msgstr "" - -#: ipaserver/plugins/virtual.py:57 -msgid "operation not defined" -msgstr "" - -#: ipaserver/plugins/virtual.py:70 -#, python-format -msgid "not allowed to perform operation: %s" -msgstr "" - -#: ipaserver/plugins/virtual.py:72 -msgid "No such virtual command" -msgstr "" - -#: ipaserver/plugins/schema.py:30 -msgid "" -"\n" -"API Schema\n" -msgstr "" - -#: ipaserver/plugins/schema.py:32 -msgid "" -"\n" -"Provides API introspection capabilities.\n" -msgstr "" - -#: ipaserver/plugins/schema.py:36 -msgid "" -"\n" -" Show user-find details:\n" -" ipa command-show user-find\n" -msgstr "" - -#: ipaserver/plugins/schema.py:39 -msgid "" -"\n" -" Find user-find parameters:\n" -" ipa param-find user-find\n" -msgstr "" - -#: ipaserver/plugins/schema.py:60 -msgid "Documentation" -msgstr "" - -#: ipaserver/plugins/schema.py:65 -msgid "Exclude from" -msgstr "" - -#: ipaserver/plugins/schema.py:70 -msgid "Include in" -msgstr "" - -#: ipaserver/plugins/schema.py:141 -msgid "Help topic" -msgstr "" - -#: ipaserver/plugins/schema.py:178 -msgid "Parameters" -msgstr "" - -#: ipaserver/plugins/schema.py:213 -msgid "Method of" -msgstr "" - -#: ipaserver/plugins/schema.py:218 -msgid "Method name" -msgstr "" - -#: ipaserver/plugins/schema.py:276 -msgid "Display information about a command." -msgstr "" - -#: ipaserver/plugins/schema.py:281 -msgid "Search for commands." -msgstr "" - -#: ipaserver/plugins/schema.py:286 -msgid "Return command defaults" -msgstr "" - -#: ipaserver/plugins/schema.py:343 -msgid "Display information about a class." -msgstr "" - -#: ipaserver/plugins/schema.py:348 -msgid "Search for classes." -msgstr "" - -#: ipaserver/plugins/schema.py:435 -msgid "Display information about a help topic." -msgstr "" - -#: ipaserver/plugins/schema.py:440 -msgid "Search for help topics." -msgstr "" - -#: ipaserver/plugins/schema.py:452 -msgid "Required" -msgstr "" - -#: ipaserver/plugins/schema.py:457 -msgid "Multi-value" -msgstr "" - -#: ipaserver/plugins/schema.py:505 -msgid "Always ask" -msgstr "" - -#: ipaserver/plugins/schema.py:510 -msgid "CLI metavar" -msgstr "" - -#: ipaserver/plugins/schema.py:515 -msgid "CLI name" -msgstr "" - -#: ipaserver/plugins/schema.py:520 -msgid "Confirm (password)" -msgstr "" - -#: ipaserver/plugins/schema.py:525 -msgid "Default" -msgstr "" - -#: ipaserver/plugins/schema.py:530 -msgid "Default from" -msgstr "" - -#: ipaserver/plugins/schema.py:535 -msgid "Label" -msgstr "" - -#: ipaserver/plugins/schema.py:540 -msgid "Convert on server" -msgstr "" - -#: ipaserver/plugins/schema.py:545 -msgid "Option group" -msgstr "" - -#: ipaserver/plugins/schema.py:550 -msgid "Sensitive" -msgstr "" - -#: ipaserver/plugins/schema.py:555 -msgid "Positional argument" -msgstr "" - -#: ipaserver/plugins/schema.py:640 -#, python-format -msgid "%(metaobject)s: %(oname)s not found" -msgstr "" - -#: ipaserver/plugins/schema.py:679 -msgid "Display information about a command parameter." -msgstr "" - -#: ipaserver/plugins/schema.py:684 -msgid "Search command parameters." -msgstr "" - -#: ipaserver/plugins/schema.py:741 -#, python-format -msgid "%(command_name)s: %(oname)s not found" -msgstr "" - -#: ipaserver/plugins/schema.py:766 -msgid "Display information about a command output." -msgstr "" - -#: ipaserver/plugins/schema.py:771 -msgid "Search for command outputs." -msgstr "" - -#: ipaserver/plugins/schema.py:776 -msgid "Store and provide schema for commands and topics" -msgstr "" - -#: ipaserver/plugins/schema.py:782 -msgid "Fingerprint of schema cached by client" -msgstr "" - -#: ipaserver/plugins/automember.py:43 -msgid "" -"\n" -"Auto Membership Rule.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:45 -msgid "" -"\n" -"Bring clarity to the membership of hosts and users by configuring inclusive\n" -"or exclusive regex patterns, you can automatically assign a new entries " -"into\n" -"a group or hostgroup based upon attribute information.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:49 -msgid "" -"\n" -"A rule is directly associated with a group by name, so you cannot create\n" -"a rule without an accompanying group or hostgroup.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:52 -msgid "" -"\n" -"A condition is a regular expression used by 389-ds to match a new incoming\n" -"entry with an automember rule. If it matches an inclusive rule then the\n" -"entry is added to the appropriate group or hostgroup.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:56 -msgid "" -"\n" -"A default group or hostgroup could be specified for entries that do not\n" -"match any rule. In case of user entries this group will be a fallback group\n" -"because all users are by default members of group specified in IPA config.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:60 -msgid "" -"\n" -"The automember-rebuild command can be used to retroactively run automember " -"rules\n" -"against existing entries, thus rebuilding their membership.\n" -msgstr "" - -#: ipaserver/plugins/automember.py:65 -msgid "" -"\n" -" Add the initial group or hostgroup:\n" -" ipa hostgroup-add --desc=\"Web Servers\" webservers\n" -" ipa group-add --desc=\"Developers\" devel\n" -msgstr "" - -#: ipaserver/plugins/automember.py:69 -msgid "" -"\n" -" Add the initial rule:\n" -" ipa automember-add --type=hostgroup webservers\n" -" ipa automember-add --type=group devel\n" -msgstr "" - -#: ipaserver/plugins/automember.py:73 -msgid "" -"\n" -" Add a condition to the rule:\n" -" ipa automember-add-condition --key=fqdn --type=hostgroup --inclusive-" -"regex=^web[1-9]+\\.example\\.com webservers\n" -" ipa automember-add-condition --key=manager --type=group --inclusive-" -"regex=^uid=mscott devel\n" -msgstr "" - -#: ipaserver/plugins/automember.py:77 -msgid "" -"\n" -" Add an exclusive condition to the rule to prevent auto assignment:\n" -" ipa automember-add-condition --key=fqdn --type=hostgroup --exclusive-" -"regex=^web5\\.example\\.com webservers\n" -msgstr "" - -#: ipaserver/plugins/automember.py:80 -msgid "" -"\n" -" Add a host:\n" -" ipa host-add web1.example.com\n" -msgstr "" - -#: ipaserver/plugins/automember.py:83 -msgid "" -"\n" -" Add a user:\n" -" ipa user-add --first=Tim --last=User --password tuser1 --manager=mscott\n" -msgstr "" - -#: ipaserver/plugins/automember.py:86 -msgid "" -"\n" -" Verify automembership:\n" -" ipa hostgroup-show webservers\n" -" Host-group: webservers\n" -" Description: Web Servers\n" -" Member hosts: web1.example.com\n" -"\n" -" ipa group-show devel\n" -" Group name: devel\n" -" Description: Developers\n" -" GID: 1004200000\n" -" Member users: tuser\n" -msgstr "" - -#: ipaserver/plugins/automember.py:98 -msgid "" -"\n" -" Remove a condition from the rule:\n" -" ipa automember-remove-condition --key=fqdn --type=hostgroup --inclusive-" -"regex=^web[1-9]+\\.example\\.com webservers\n" -msgstr "" - -#: ipaserver/plugins/automember.py:101 -msgid "" -"\n" -" Modify the automember rule:\n" -" ipa automember-mod\n" -msgstr "" - -#: ipaserver/plugins/automember.py:104 -msgid "" -"\n" -" Set the default (fallback) target group:\n" -" ipa automember-default-group-set --default-group=webservers --" -"type=hostgroup\n" -" ipa automember-default-group-set --default-group=ipausers --type=group\n" -msgstr "" - -#: ipaserver/plugins/automember.py:108 -msgid "" -"\n" -" Remove the default (fallback) target group:\n" -" ipa automember-default-group-remove --type=hostgroup\n" -" ipa automember-default-group-remove --type=group\n" -msgstr "" - -#: ipaserver/plugins/automember.py:112 -msgid "" -"\n" -" Show the default (fallback) target group:\n" -" ipa automember-default-group-show --type=hostgroup\n" -" ipa automember-default-group-show --type=group\n" -msgstr "" - -#: ipaserver/plugins/automember.py:116 -msgid "" -"\n" -" Find all of the automember rules:\n" -" ipa automember-find\n" -msgstr "" - -#: ipaserver/plugins/automember.py:119 -msgid "" -"\n" -" Find all of the orphan automember rules:\n" -" ipa automember-find-orphans --type=hostgroup\n" -" Find all of the orphan automember rules and remove them:\n" -" ipa automember-find-orphans --type=hostgroup --remove\n" -msgstr "" - -#: ipaserver/plugins/automember.py:124 -msgid "" -"\n" -" Display a automember rule:\n" -" ipa automember-show --type=hostgroup webservers\n" -" ipa automember-show --type=group devel\n" -msgstr "" - -#: ipaserver/plugins/automember.py:128 -msgid "" -"\n" -" Delete an automember rule:\n" -" ipa automember-del --type=hostgroup webservers\n" -" ipa automember-del --type=group devel\n" -msgstr "" - -#: ipaserver/plugins/automember.py:132 -msgid "" -"\n" -" Rebuild membership for all users:\n" -" ipa automember-rebuild --type=group\n" -msgstr "" - -#: ipaserver/plugins/automember.py:135 -msgid "" -"\n" -" Rebuild membership for all hosts:\n" -" ipa automember-rebuild --type=hostgroup\n" -msgstr "" - -#: ipaserver/plugins/automember.py:138 -msgid "" -"\n" -" Rebuild membership for specified users:\n" -" ipa automember-rebuild --users=tuser1 --users=tuser2\n" -msgstr "" - -#: ipaserver/plugins/automember.py:141 -msgid "" -"\n" -" Rebuild membership for specified hosts:\n" -" ipa automember-rebuild --hosts=web1.example.com --hosts=web2.example." -"com\n" -msgstr "" - -#: ipaserver/plugins/automember.py:160 ipaserver/plugins/automember.py:161 -msgid "Inclusive Regex" -msgstr "" - -#: ipaserver/plugins/automember.py:167 ipaserver/plugins/automember.py:168 -msgid "Exclusive Regex" -msgstr "" - -#: ipaserver/plugins/automember.py:176 -msgid "Attribute Key" -msgstr "" - -#: ipaserver/plugins/automember.py:177 -msgid "" -"Attribute to filter via regex. For example fqdn for a host, or manager for a " -"user" -msgstr "" - -#: ipaserver/plugins/automember.py:184 -msgid "Grouping Type" -msgstr "" - -#: ipaserver/plugins/automember.py:185 -msgid "Grouping to which the rule applies" -msgstr "" - -#: ipaserver/plugins/automember.py:244 -msgid "Auto Membership Rule" -msgstr "" - -#: ipaserver/plugins/automember.py:249 ipaserver/plugins/automember.py:250 -msgid "Automember Rule" -msgstr "" - -#: ipaserver/plugins/automember.py:258 -msgid "A description of this auto member rule" -msgstr "" - -#: ipaserver/plugins/automember.py:262 ipaserver/plugins/automember.py:585 -msgid "Default (fallback) Group" -msgstr "" - -#: ipaserver/plugins/automember.py:263 -msgid "Default group for entries to land" -msgstr "" - -#: ipaserver/plugins/automember.py:275 -#, python-format -msgid "%(otype)s \"%(oname)s\" not found" -msgstr "" - -#: ipaserver/plugins/automember.py:301 -#, python-format -msgid "%s is not a valid attribute." -msgstr "" - -#: ipaserver/plugins/automember.py:314 -msgid "" -"\n" -" Add an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:318 -#, python-format -msgid "Added automember rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:325 -msgid "Auto Membership is not configured" -msgstr "" - -#: ipaserver/plugins/automember.py:337 -msgid "" -"\n" -" Add conditions to an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:342 ipaclient/plugins/automember.py:33 -msgid "Failed to add" -msgstr "" - -#: ipaserver/plugins/automember.py:348 -#, python-format -msgid "Added condition(s) to \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:357 -msgid "Conditions that could not be added" -msgstr "" - -#: ipaserver/plugins/automember.py:361 -msgid "Number of conditions added" -msgstr "" - -#: ipaserver/plugins/automember.py:371 ipaserver/plugins/automember.py:455 -#, python-format -msgid "Auto member rule: %s not found!" -msgstr "" - -#: ipaserver/plugins/automember.py:413 -msgid "" -"\n" -" Override this so we can add completed and failed to the return " -"result.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:428 -msgid "" -"\n" -" Remove conditions from an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:432 -#, python-format -msgid "Removed condition(s) from \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:441 -msgid "Conditions that could not be removed" -msgstr "" - -#: ipaserver/plugins/automember.py:445 -msgid "Number of conditions removed" -msgstr "" - -#: ipaserver/plugins/automember.py:496 -msgid "" -"\n" -" Override this so we can set completed and failed.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:511 -msgid "" -"\n" -" Modify an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:515 -#, python-format -msgid "Modified automember rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:525 -msgid "" -"\n" -" Delete an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:529 -#, python-format -msgid "Deleted automember rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:534 -msgid "" -"\n" -" Search for automember rules.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:540 ipaserver/plugins/automember.py:840 -#, python-format -msgid "%(count)d rules matched" -msgid_plural "%(count)d rules matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/automember.py:552 -msgid "" -"\n" -" Display information about an automember rule.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:576 -msgid "" -"\n" -" Set default (fallback) group for all unmatched entries.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:586 -msgid "Default (fallback) group for entries to land" -msgstr "" - -#: ipaserver/plugins/automember.py:590 -#, python-format -msgid "Set default (fallback) group for automember \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:607 -msgid "" -"\n" -" Remove default (fallback) group for all unmatched entries.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:614 -#, python-format -msgid "Removed default (fallback) group for automember \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/automember.py:625 ipaserver/plugins/automember.py:633 -#: ipaserver/plugins/automember.py:661 -msgid "No default (fallback) group set" -msgstr "" - -#: ipaserver/plugins/automember.py:644 -msgid "" -"\n" -" Display information about the default (fallback) automember groups.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:675 -msgid "Task DN" -msgstr "" - -#: ipaserver/plugins/automember.py:676 -msgid "DN of the started task" -msgstr "" - -#: ipaserver/plugins/automember.py:683 -msgid "Rebuild auto membership." -msgstr "" - -#: ipaserver/plugins/automember.py:693 -msgid "Rebuild membership for all members of a grouping" -msgstr "" - -#: ipaserver/plugins/automember.py:698 -msgid "Rebuild membership for specified users" -msgstr "" - -#: ipaserver/plugins/automember.py:703 -msgid "Rebuild membership for specified hosts" -msgstr "" - -#: ipaserver/plugins/automember.py:708 -msgid "No wait" -msgstr "" - -#: ipaserver/plugins/automember.py:709 -msgid "Don't wait for rebuilding membership" -msgstr "" - -#: ipaserver/plugins/automember.py:727 -msgid "at least one of options: type, users, hosts must be specified" -msgstr "" - -#: ipaserver/plugins/automember.py:733 -msgid "users and hosts cannot both be set" -msgstr "" - -#: ipaserver/plugins/automember.py:737 -msgid "hosts cannot be set when type is 'group'" -msgstr "" - -#: ipaserver/plugins/automember.py:741 -msgid "users cannot be set when type is 'hostgroup'" -msgstr "" - -#: ipaserver/plugins/automember.py:795 -msgid "Automember rebuild membership task started" -msgstr "" - -#: ipaserver/plugins/automember.py:815 -#, python-format -msgid "Task DN = '%s'" -msgstr "" - -#: ipaserver/plugins/automember.py:828 -msgid "" -"\n" -" Search for orphan automember rules. The command might need to be run as\n" -" a privileged user user to get all orphan rules.\n" -" " -msgstr "" - -#: ipaserver/plugins/automember.py:835 -msgid "Remove orphan automember rules" -msgstr "" - -#: ipaserver/plugins/cert.py:63 ipaserver/plugins/hbactest.py:39 -msgid "pyhbac is not installed." -msgstr "" - -#: ipaserver/plugins/cert.py:68 -msgid "" -"\n" -"IPA certificate operations\n" -msgstr "" - -#: ipaserver/plugins/cert.py:70 -msgid "" -"\n" -"Implements a set of commands for managing server SSL certificates.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:72 -msgid "" -"\n" -"Certificate requests exist in the form of a Certificate Signing Request " -"(CSR)\n" -"in PEM format.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:75 -msgid "" -"\n" -"The dogtag CA uses just the CN value of the CSR and forces the rest of the\n" -"subject to values configured in the server.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:78 -msgid "" -"\n" -"A certificate is stored with a service principal and a service principal\n" -"needs a host.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:81 -msgid "" -"\n" -"In order to request a certificate:\n" -msgstr "" - -#: ipaserver/plugins/cert.py:83 -msgid "" -"\n" -"* The host must exist\n" -"* The service must exist (or you use the --add option to automatically add " -"it)\n" -msgstr "" - -#: ipaserver/plugins/cert.py:86 -msgid "" -"\n" -"SEARCHING:\n" -msgstr "" - -#: ipaserver/plugins/cert.py:88 -msgid "" -"\n" -"Certificates may be searched on by certificate subject, serial number,\n" -"revocation reason, validity dates and the issued date.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:91 -msgid "" -"\n" -"When searching on dates the _from date does a >= search and the _to date\n" -"does a <= search. When combined these are done as an AND.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:94 -msgid "" -"\n" -"Dates are treated as GMT to match the dates in the certificates.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:96 -msgid "" -"\n" -"The date format is YYYY-mm-dd.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:100 -msgid "" -"\n" -" Request a new certificate and add the principal:\n" -" ipa cert-request --add --principal=HTTP/lion.example.com example.csr\n" -msgstr "" - -#: ipaserver/plugins/cert.py:103 -msgid "" -"\n" -" Retrieve an existing certificate:\n" -" ipa cert-show 1032\n" -msgstr "" - -#: ipaserver/plugins/cert.py:106 -msgid "" -"\n" -" Revoke a certificate (see RFC 5280 for reason details):\n" -" ipa cert-revoke --revocation-reason=6 1032\n" -msgstr "" - -#: ipaserver/plugins/cert.py:109 -msgid "" -"\n" -" Remove a certificate from revocation hold status:\n" -" ipa cert-remove-hold 1032\n" -msgstr "" - -#: ipaserver/plugins/cert.py:112 -msgid "" -"\n" -" Check the status of a signing request:\n" -" ipa cert-status 10\n" -msgstr "" - -#: ipaserver/plugins/cert.py:115 -msgid "" -"\n" -" Search for certificates by hostname:\n" -" ipa cert-find --subject=ipaserver.example.com\n" -msgstr "" - -#: ipaserver/plugins/cert.py:118 -msgid "" -"\n" -" Search for revoked certificates by reason:\n" -" ipa cert-find --revocation-reason=5\n" -msgstr "" - -#: ipaserver/plugins/cert.py:121 -msgid "" -"\n" -" Search for certificates based on issuance date\n" -" ipa cert-find --issuedon-from=2013-02-01 --issuedon-to=2013-02-07\n" -msgstr "" - -#: ipaserver/plugins/cert.py:124 -msgid "" -"\n" -" Search for certificates owned by a specific user:\n" -" ipa cert-find --user=user\n" -msgstr "" - -#: ipaserver/plugins/cert.py:127 -msgid "" -"\n" -" Examine a certificate:\n" -" ipa cert-find --file=cert.pem --all\n" -msgstr "" - -#: ipaserver/plugins/cert.py:130 -msgid "" -"\n" -" Verify that a certificate is owned by a specific user:\n" -" ipa cert-find --file=cert.pem --user=user\n" -msgstr "" - -#: ipaserver/plugins/cert.py:133 -msgid "" -"\n" -"IPA currently immediately issues (or declines) all certificate requests so\n" -"the status of a request is not normally useful. This is for future use\n" -"or the case where a CA does not immediately issue a certificate.\n" -msgstr "" - -#: ipaserver/plugins/cert.py:137 -msgid "" -"\n" -"The following revocation reasons are supported:\n" -"\n" -msgstr "" - -#: ipaserver/plugins/cert.py:140 -msgid " * 0 - unspecified\n" -msgstr "" - -#: ipaserver/plugins/cert.py:141 -msgid " * 1 - keyCompromise\n" -msgstr "" - -#: ipaserver/plugins/cert.py:142 -msgid " * 2 - cACompromise\n" -msgstr "" - -#: ipaserver/plugins/cert.py:143 -msgid " * 3 - affiliationChanged\n" -msgstr "" - -#: ipaserver/plugins/cert.py:144 -msgid " * 4 - superseded\n" -msgstr "" - -#: ipaserver/plugins/cert.py:145 -msgid " * 5 - cessationOfOperation\n" -msgstr "" - -#: ipaserver/plugins/cert.py:146 -msgid " * 6 - certificateHold\n" -msgstr "" - -#: ipaserver/plugins/cert.py:147 -msgid " * 8 - removeFromCRL\n" -msgstr "" - -#: ipaserver/plugins/cert.py:148 -msgid " * 9 - privilegeWithdrawn\n" -msgstr "" - -#: ipaserver/plugins/cert.py:149 -msgid " * 10 - aACompromise\n" -msgstr "" - -#: ipaserver/plugins/cert.py:150 -msgid "" -"\n" -"Note that reason code 7 is not used. See RFC 5280 for more details:\n" -msgstr "" - -#: ipaserver/plugins/cert.py:152 -msgid "" -"\n" -"http://www.ietf.org/rfc/rfc5280.txt\n" -"\n" -msgstr "" - -#: ipaserver/plugins/cert.py:281 ipaserver/plugins/certprofile.py:86 -msgid "CA is not configured" -msgstr "" - -#: ipaserver/plugins/cert.py:287 -#, python-format -msgid "" -"Principal '%(principal)s' is not permitted to use CA '%(ca)s' with profile " -"'%(profile_id)s' for certificate issuance." -msgstr "" - -#: ipaserver/plugins/cert.py:307 -msgid "enabledService/configuredService not in ipaConfigString kdc entry" -msgstr "" - -#: ipaserver/plugins/cert.py:311 -#, python-format -msgid "Host '%(hostname)s' is not an active KDC" -msgstr "" - -#: ipaserver/plugins/cert.py:345 -msgid "Issuing CA" -msgstr "" - -#: ipaserver/plugins/cert.py:346 -msgid "Name of issuing CA" -msgstr "" - -#: ipaserver/plugins/cert.py:368 -msgid "Subject email address" -msgstr "" - -#: ipaserver/plugins/cert.py:373 -msgid "Subject DNS name" -msgstr "" - -#: ipaserver/plugins/cert.py:378 -msgid "Subject X.400 address" -msgstr "" - -#: ipaserver/plugins/cert.py:383 -msgid "Subject directory name" -msgstr "" - -#: ipaserver/plugins/cert.py:388 -msgid "Subject EDI Party name" -msgstr "" - -#: ipaserver/plugins/cert.py:393 -msgid "Subject URI" -msgstr "" - -#: ipaserver/plugins/cert.py:398 -msgid "Subject IP Address" -msgstr "" - -#: ipaserver/plugins/cert.py:403 -msgid "Subject OID" -msgstr "" - -#: ipaserver/plugins/cert.py:408 -msgid "Subject UPN" -msgstr "" - -#: ipaserver/plugins/cert.py:413 -msgid "Subject Kerberos principal name" -msgstr "" - -#: ipaserver/plugins/cert.py:418 -msgid "Subject Other Name" -msgstr "" - -#: ipaserver/plugins/cert.py:449 ipaclient/remote_plugins/2_114/cert.py:251 -msgid "Serial number" -msgstr "" - -#: ipaserver/plugins/cert.py:450 ipaclient/remote_plugins/2_114/cert.py:252 -msgid "Serial number in decimal or if prefixed with 0x in hexadecimal" -msgstr "" - -#: ipaserver/plugins/cert.py:456 -msgid "Serial number (hex)" -msgstr "" - -#: ipaserver/plugins/cert.py:576 ipaserver/plugins/certprofile.py:122 -#: ipaclient/plugins/csrgen.py:45 -msgid "Profile ID" -msgstr "" - -#: ipaserver/plugins/cert.py:577 ipaclient/remote_plugins/2_156/cert.py:298 -msgid "Certificate Profile to use" -msgstr "" - -#: ipaserver/plugins/cert.py:582 -msgid "Request status" -msgstr "" - -#: ipaserver/plugins/cert.py:587 ipaclient/remote_plugins/2_114/cert.py:367 -msgid "Request id" -msgstr "" - -#: ipaserver/plugins/cert.py:603 ipaclient/remote_plugins/2_114/cert.py:267 -msgid "Submit a certificate signing request." -msgstr "" - -#: ipaserver/plugins/cert.py:611 ipaclient/remote_plugins/2_114/cert.py:273 -msgid "CSR" -msgstr "" - -#: ipaserver/plugins/cert.py:621 ipaclient/plugins/csrgen.py:39 -msgid "Principal" -msgstr "" - -#: ipaserver/plugins/cert.py:622 ipaclient/plugins/csrgen.py:40 -msgid "Principal for this certificate (e.g. HTTP/test.example.com)" -msgstr "" - -#: ipaserver/plugins/cert.py:628 -msgid "" -"automatically add the principal if it doesn't exist (service principals only)" -msgstr "" - -#: ipaserver/plugins/cert.py:677 -#, python-format -msgid "krbtgt certs can use only the %s profile" -msgstr "" - -#: ipaserver/plugins/cert.py:729 -msgid "No Common Name was found in subject of request." -msgstr "" - -#: ipaserver/plugins/cert.py:737 -#, python-format -msgid "" -"hostname in subject of request '%(cn)s' does not match name or aliases of " -"principal '%(principal)s'" -msgstr "" - -#: ipaserver/plugins/cert.py:743 -#, python-format -msgid "" -"hostname in subject of request '%(cn)s' does not match principal hostname " -"'%(hostname)s'" -msgstr "" - -#: ipaserver/plugins/cert.py:752 -msgid "DN commonName does not match user's login" -msgstr "" - -#: ipaserver/plugins/cert.py:766 -msgid "DN emailAddress does not match any of user's email addresses" -msgstr "" - -#: ipaserver/plugins/cert.py:775 -#, python-format -msgid "" -"Insufficient 'write' privilege to the 'userCertificate' attribute of entry " -"'%s'." -msgstr "" - -#: ipaserver/plugins/cert.py:796 ipaserver/plugins/cert.py:899 -#, python-format -msgid "subject alt name type %s is forbidden for user principals" -msgstr "" - -#: ipaserver/plugins/cert.py:826 -#, python-format -msgid "" -"The service principal for subject alt name %s in certificate request does " -"not exist" -msgstr "" - -#: ipaserver/plugins/cert.py:857 -#, python-format -msgid "" -"Insufficient privilege to create a certificate with subject alt name '%s'." -msgstr "" - -#: ipaserver/plugins/cert.py:875 -#, python-format -msgid "Principal '%s' in subject alt name does not match requested principal" -msgstr "" - -#: ipaserver/plugins/cert.py:884 -msgid "RFC822Name does not match any of user's email addresses" -msgstr "" - -#: ipaserver/plugins/cert.py:891 -#, python-format -msgid "subject alt name type %s is forbidden for non-user principals" -msgstr "" - -#: ipaserver/plugins/cert.py:908 -#, python-format -msgid "Subject alt name type %s is forbidden" -msgstr "" - -#: ipaserver/plugins/cert.py:926 -#, python-format -msgid "CA '%s' is disabled" -msgstr "" - -#: ipaserver/plugins/cert.py:1013 -msgid "'add' option" -msgstr "" - -#: ipaserver/plugins/cert.py:1017 ipaclient/plugins/csrgen.py:109 -msgid "The principal for this request doesn't exist." -msgstr "" - -#: ipaserver/plugins/cert.py:1133 -#, python-format -msgid "IP address in subjectAltName (%s) unreachable from DNS names" -msgstr "" - -#: ipaserver/plugins/cert.py:1150 -#, python-format -msgid "IP address in subjectAltName (%s) does not have PTR record" -msgstr "" - -#: ipaserver/plugins/cert.py:1162 -#, python-format -msgid "PTR record for SAN IP (%s) does not match A/AAAA records" -msgstr "" - -#: ipaserver/plugins/cert.py:1227 ipaclient/remote_plugins/2_114/cert.py:362 -msgid "Check the status of a certificate signing request." -msgstr "" - -#: ipaserver/plugins/cert.py:1261 -msgid "Revoked" -msgstr "" - -#: ipaserver/plugins/cert.py:1267 -msgid "" -"Reason for revoking the certificate (0-10). Type \"ipa help cert\" for " -"revocation reason details. " -msgstr "" - -#: ipaserver/plugins/cert.py:1289 -#, python-format -msgid "Owner %s" -msgstr "" - -#: ipaserver/plugins/cert.py:1336 ipaclient/remote_plugins/2_114/cert.py:334 -msgid "Retrieve an existing certificate." -msgstr "" - -#: ipaserver/plugins/cert.py:1340 ipaclient/remote_plugins/2_114/cert.py:348 -msgid "Output filename" -msgstr "" - -#: ipaserver/plugins/cert.py:1341 ipaclient/remote_plugins/2_114/cert.py:349 -msgid "File to store the certificate in." -msgstr "" - -#: ipaserver/plugins/cert.py:1376 -#, python-format -msgid "" -"Certificate with serial number %(serial)s issued by CA '%(ca)s' not found" -msgstr "" - -#: ipaserver/plugins/cert.py:1410 ipaclient/remote_plugins/2_114/cert.py:306 -msgid "Revoke a certificate." -msgstr "" - -#: ipaserver/plugins/cert.py:1445 -msgid "7 is not a valid revocation reason" -msgstr "" - -#: ipaserver/plugins/cert.py:1458 ipaclient/remote_plugins/2_114/cert.py:246 -msgid "Take a revoked certificate off hold." -msgstr "" - -#: ipaserver/plugins/cert.py:1481 ipaclient/remote_plugins/2_114/cert.py:129 -msgid "Search for existing certificates." -msgstr "" - -#: ipaserver/plugins/cert.py:1486 ipaclient/remote_plugins/2_114/cert.py:135 -msgid "Match cn attribute in subject" -msgstr "" - -#: ipaserver/plugins/cert.py:1490 ipaclient/remote_plugins/2_114/cert.py:146 -msgid "minimum serial number" -msgstr "" - -#: ipaserver/plugins/cert.py:1496 ipaclient/remote_plugins/2_114/cert.py:151 -msgid "maximum serial number" -msgstr "" - -#: ipaserver/plugins/cert.py:1502 ipaclient/remote_plugins/2_114/cert.py:156 -msgid "match the common name exactly" -msgstr "" - -#: ipaserver/plugins/cert.py:1506 ipaclient/remote_plugins/2_114/cert.py:163 -msgid "Valid not after from this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1511 ipaclient/remote_plugins/2_114/cert.py:168 -msgid "Valid not after to this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1516 ipaclient/remote_plugins/2_114/cert.py:173 -msgid "Valid not before from this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1521 ipaclient/remote_plugins/2_114/cert.py:178 -msgid "Valid not before to this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1526 ipaclient/remote_plugins/2_114/cert.py:183 -msgid "Issued on from this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1531 ipaclient/remote_plugins/2_114/cert.py:188 -msgid "Issued on to this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1536 ipaclient/remote_plugins/2_114/cert.py:193 -msgid "Revoked on from this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1541 ipaclient/remote_plugins/2_114/cert.py:198 -msgid "Revoked on to this date (YYYY-mm-dd)" -msgstr "" - -#: ipaserver/plugins/cert.py:1547 -msgid "Results should contain primary key attribute only (\"certificate\")" -msgstr "" - -#: ipaserver/plugins/cert.py:1563 -#, python-format -msgid "%(count)d certificate matched" -msgid_plural "%(count)d certificates matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/cert.py:1585 -#, python-format -msgid "Search for certificates with these owner %s." -msgstr "" - -#: ipaserver/plugins/cert.py:1596 -#, python-format -msgid "Search for certificates without these owner %s." -msgstr "" - -#: ipaserver/plugins/cert.py:1909 ipaclient/remote_plugins/2_114/cert.py:103 -msgid "Checks if any of the servers has the CA service enabled." +#: ipaserver/plugins/krbtpolicy.py:300 +msgid "Reset Kerberos ticket policy to the default values." msgstr "" #: ipaserver/plugins/dns.py:94 @@ -14296,6 +10038,11 @@ msgstr "" msgid "Cannot create reverse record for \"%(value)s\": %(exc)s" msgstr "" +#: ipaserver/plugins/dns.py:947 ipaserver/plugins/dns.py:970 +#: ipaserver/plugins/host.py:669 ipaclient/remote_plugins/2_114/host.py:429 +msgid "IP Address" +msgstr "" + #: ipaserver/plugins/dns.py:956 ipaserver/plugins/dns.py:1543 msgid "Record data" msgstr "" @@ -14567,7 +10314,7 @@ msgid "" "a standard format \"IP_ADDRESS port PORT\"" msgstr "" -#: ipaserver/plugins/dns.py:2036 ipaserver/plugins/dns.py:4080 +#: ipaserver/plugins/dns.py:2036 ipaserver/plugins/dns.py:4081 #: ipaserver/plugins/dnsserver.py:136 ipaclient/remote_plugins/2_114/dns.py:258 msgid "Forward policy" msgstr "" @@ -14584,7 +10331,7 @@ msgid "Managedby permission" msgstr "" #: ipaserver/plugins/dns.py:2050 ipaserver/plugins/dns.py:2216 -#: ipaserver/plugins/dns.py:3165 ipaserver/plugins/dns.py:4147 +#: ipaserver/plugins/dns.py:3167 ipaserver/plugins/dns.py:4148 #: ipaserver/plugins/dnsserver.py:148 msgid "DNS is not configured" msgstr "" @@ -14733,7 +10480,7 @@ msgid "" "transfer the zone" msgstr "" -#: ipaserver/plugins/dns.py:2513 ipaserver/plugins/dns.py:4087 +#: ipaserver/plugins/dns.py:2513 ipaserver/plugins/dns.py:4088 msgid "Allow PTR sync" msgstr "" @@ -14872,713 +10619,1360 @@ msgstr "" msgid "Record name" msgstr "" -#: ipaserver/plugins/dns.py:3034 ipaclient/remote_plugins/2_114/dns.py:2627 +#: ipaserver/plugins/dns.py:3036 ipaclient/remote_plugins/2_114/dns.py:2627 msgid "Structured" msgstr "" -#: ipaserver/plugins/dns.py:3035 ipaclient/remote_plugins/2_114/dns.py:2628 +#: ipaserver/plugins/dns.py:3037 ipaclient/remote_plugins/2_114/dns.py:2628 msgid "Parse all raw DNS records and return them in a structured way" msgstr "" -#: ipaserver/plugins/dns.py:3044 +#: ipaserver/plugins/dns.py:3046 msgid "DS record must not be in zone apex (RFC 4035 section 2.4)" msgstr "" -#: ipaserver/plugins/dns.py:3061 +#: ipaserver/plugins/dns.py:3063 msgid "" "out-of-zone data: record name must be a subdomain of the zone or a relative " "name" msgstr "" -#: ipaserver/plugins/dns.py:3072 +#: ipaserver/plugins/dns.py:3074 #, python-format msgid "" "owner of %(types)s records should not be a wildcard domain name (RFC 4592 " "section 4)" msgstr "" -#: ipaserver/plugins/dns.py:3101 +#: ipaserver/plugins/dns.py:3103 #, python-format msgid "" "Reverse zone for PTR record should be a sub-zone of one the following fully " "qualified domains: %s" msgstr "" -#: ipaserver/plugins/dns.py:3116 +#: ipaserver/plugins/dns.py:3118 #, python-format msgid "" "Reverse zone %(name)s requires exactly %(count)d IP address components, " "%(user_count)d given" msgstr "" -#: ipaserver/plugins/dns.py:3158 +#: ipaserver/plugins/dns.py:3160 msgid "only master zones can contain records" msgstr "" -#: ipaserver/plugins/dns.py:3256 +#: ipaserver/plugins/dns.py:3258 msgid "only one CNAME record is allowed per name (RFC 2136, section 1.1.5)" msgstr "" -#: ipaserver/plugins/dns.py:3262 +#: ipaserver/plugins/dns.py:3264 msgid "" "CNAME record is not allowed to coexist with any other record (RFC 1034, " "section 3.6.2)" msgstr "" -#: ipaserver/plugins/dns.py:3270 +#: ipaserver/plugins/dns.py:3272 msgid "only one DNAME record is allowed per name (RFC 6672, section 2.4)" msgstr "" -#: ipaserver/plugins/dns.py:3286 +#: ipaserver/plugins/dns.py:3288 #, python-format msgid "" "NS record is not allowed to coexist with an %(type)s record except when " "located in a zone root record (RFC 2181, section 6.1)" msgstr "" -#: ipaserver/plugins/dns.py:3302 +#: ipaserver/plugins/dns.py:3304 msgid "" "DS record requires to coexist with an NS record (RFC 4592 section 4.6, RFC " "4035 section 2.4)" msgstr "" -#: ipaserver/plugins/dns.py:3531 ipaclient/plugins/dns.py:137 +#: ipaserver/plugins/dns.py:3533 ipaclient/plugins/dns.py:137 msgid "Split DNS record to parts" msgstr "" -#: ipaserver/plugins/dns.py:3546 ipaclient/remote_plugins/2_114/dns.py:1780 +#: ipaserver/plugins/dns.py:3548 ipaclient/remote_plugins/2_114/dns.py:1780 msgid "Add new DNS resource record." msgstr "" -#: ipaserver/plugins/dns.py:3554 ipaclient/remote_plugins/2_114/dns.py:2620 +#: ipaserver/plugins/dns.py:3555 ipaclient/remote_plugins/2_114/dns.py:2620 msgid "force NS record creation even if its hostname is not in DNS" msgstr "" -#: ipaserver/plugins/dns.py:3584 +#: ipaserver/plugins/dns.py:3585 #, python-format msgid "Raw value of a DNS record was already set by \"%(name)s\" option" msgstr "" -#: ipaserver/plugins/dns.py:3693 ipaclient/remote_plugins/2_114/dns.py:3459 +#: ipaserver/plugins/dns.py:3694 ipaclient/remote_plugins/2_114/dns.py:3459 msgid "Modify a DNS resource record." msgstr "" -#: ipaserver/plugins/dns.py:3710 +#: ipaserver/plugins/dns.py:3711 msgid "DNS zone root record cannot be renamed" msgstr "" -#: ipaserver/plugins/dns.py:3728 +#: ipaserver/plugins/dns.py:3729 msgid "DNS records can be only updated one at a time" msgstr "" -#: ipaserver/plugins/dns.py:3820 ipaclient/remote_plugins/2_114/dns.py:3018 +#: ipaserver/plugins/dns.py:3821 ipaclient/remote_plugins/2_114/dns.py:3018 msgid "Delete DNS record entry." msgstr "" -#: ipaserver/plugins/dns.py:3821 +#: ipaserver/plugins/dns.py:3822 #, python-format msgid "Deleted record \"%(value)s\"" msgstr "" -#: ipaserver/plugins/dns.py:3828 ipaclient/remote_plugins/2_114/dns.py:2665 +#: ipaserver/plugins/dns.py:3829 ipaclient/remote_plugins/2_114/dns.py:2665 msgid "Delete DNS resource record." msgstr "" -#: ipaserver/plugins/dns.py:3832 ipaclient/plugins/dns.py:329 +#: ipaserver/plugins/dns.py:3833 ipaclient/plugins/dns.py:329 msgid "" "Neither --del-all nor options to delete a specific record provided.\n" "Command help may be consulted for all supported record types." msgstr "" -#: ipaserver/plugins/dns.py:3838 ipaclient/remote_plugins/2_114/dns.py:2987 +#: ipaserver/plugins/dns.py:3839 ipaclient/remote_plugins/2_114/dns.py:2987 msgid "Delete all associated records" msgstr "" -#: ipaserver/plugins/dns.py:3914 +#: ipaserver/plugins/dns.py:3915 #, python-format msgid "Zone record '%s' cannot be deleted" msgstr "" -#: ipaserver/plugins/dns.py:3955 ipaclient/remote_plugins/2_114/dns.py:4336 +#: ipaserver/plugins/dns.py:3956 ipaclient/remote_plugins/2_114/dns.py:4336 msgid "Display DNS resource." msgstr "" -#: ipaserver/plugins/dns.py:3972 ipaclient/remote_plugins/2_114/dns.py:3067 +#: ipaserver/plugins/dns.py:3973 ipaclient/remote_plugins/2_114/dns.py:3067 msgid "Search for DNS resources." msgstr "" -#: ipaserver/plugins/dns.py:4011 ipaclient/remote_plugins/2_164/dns.py:1043 +#: ipaserver/plugins/dns.py:4012 ipaclient/remote_plugins/2_164/dns.py:1043 msgid "Resolve a host name in DNS. (Deprecated)" msgstr "" -#: ipaserver/plugins/dns.py:4016 +#: ipaserver/plugins/dns.py:4017 #, python-format msgid "Found '%(value)s'" msgstr "" -#: ipaserver/plugins/dns.py:4020 ipaclient/remote_plugins/2_164/dns.py:1050 +#: ipaserver/plugins/dns.py:4021 ipaclient/remote_plugins/2_164/dns.py:1050 msgid "Hostname (FQDN)" msgstr "" -#: ipaserver/plugins/dns.py:4031 +#: ipaserver/plugins/dns.py:4032 #, python-format msgid "Host '%(host)s' not found" msgstr "" -#: ipaserver/plugins/dns.py:4048 ipaclient/remote_plugins/2_114/dns.py:1052 +#: ipaserver/plugins/dns.py:4049 ipaclient/remote_plugins/2_114/dns.py:1052 msgid "Checks if any of the servers has the DNS service enabled." msgstr "" -#: ipaserver/plugins/dns.py:4062 +#: ipaserver/plugins/dns.py:4063 msgid "DNS configuration options" msgstr "" -#: ipaserver/plugins/dns.py:4067 ipaserver/plugins/dns.py:4068 +#: ipaserver/plugins/dns.py:4068 ipaserver/plugins/dns.py:4069 msgid "DNS Global Configuration" msgstr "" -#: ipaserver/plugins/dns.py:4074 ipaclient/remote_plugins/2_114/dns.py:252 +#: ipaserver/plugins/dns.py:4075 ipaclient/remote_plugins/2_114/dns.py:252 msgid "Global forwarders" msgstr "" -#: ipaserver/plugins/dns.py:4075 ipaclient/remote_plugins/2_114/dns.py:253 +#: ipaserver/plugins/dns.py:4076 ipaclient/remote_plugins/2_114/dns.py:253 msgid "" "Global forwarders. A custom port can be specified for each forwarder using a " "standard format \"IP_ADDRESS port PORT\"" msgstr "" -#: ipaserver/plugins/dns.py:4081 ipaclient/remote_plugins/2_114/dns.py:259 +#: ipaserver/plugins/dns.py:4082 ipaclient/remote_plugins/2_114/dns.py:259 msgid "" "Global forwarding policy. Set to \"none\" to disable any configured global " "forwarders." msgstr "" -#: ipaserver/plugins/dns.py:4088 ipaclient/remote_plugins/2_114/dns.py:265 +#: ipaserver/plugins/dns.py:4089 ipaclient/remote_plugins/2_114/dns.py:265 msgid "Allow synchronization of forward (A, AAAA) and reverse (PTR) records" msgstr "" -#: ipaserver/plugins/dns.py:4093 ipaclient/remote_plugins/2_114/dns.py:270 +#: ipaserver/plugins/dns.py:4094 ipaclient/remote_plugins/2_114/dns.py:270 msgid "Zone refresh interval" msgstr "" -#: ipaserver/plugins/dns.py:4094 ipaclient/remote_plugins/2_49/dns.py:235 +#: ipaserver/plugins/dns.py:4095 ipaclient/remote_plugins/2_49/dns.py:235 msgid "An interval between regular polls of the name server for new DNS zones" msgstr "" -#: ipaserver/plugins/dns.py:4099 +#: ipaserver/plugins/dns.py:4100 msgid "IPA DNS version" msgstr "" -#: ipaserver/plugins/dns.py:4104 +#: ipaserver/plugins/dns.py:4104 ipaserver/plugins/config.py:321 +msgid "IPA DNS servers" +msgstr "" + +#: ipaserver/plugins/dns.py:4105 msgid "List of IPA masters configured as DNS servers" msgstr "" -#: ipaserver/plugins/dns.py:4110 +#: ipaserver/plugins/dns.py:4110 ipaserver/plugins/config.py:333 +msgid "IPA DNSSec key master" +msgstr "" + +#: ipaserver/plugins/dns.py:4111 msgid "IPA server configured as DNSSec key master" msgstr "" -#: ipaserver/plugins/dns.py:4161 +#: ipaserver/plugins/dns.py:4162 msgid "Global DNS configuration is empty" msgstr "" -#: ipaserver/plugins/dns.py:4165 ipaclient/remote_plugins/2_114/dns.py:1108 +#: ipaserver/plugins/dns.py:4166 ipaclient/remote_plugins/2_114/dns.py:1108 msgid "Modify global DNS configuration." msgstr "" -#: ipaserver/plugins/dns.py:4223 ipaclient/remote_plugins/2_114/dns.py:1203 +#: ipaserver/plugins/dns.py:4224 ipaclient/remote_plugins/2_114/dns.py:1203 msgid "Show the current global DNS configuration." msgstr "" -#: ipaserver/plugins/dns.py:4242 +#: ipaserver/plugins/dns.py:4243 msgid "DNS forward zone" msgstr "" -#: ipaserver/plugins/dns.py:4243 +#: ipaserver/plugins/dns.py:4244 msgid "DNS forward zones" msgstr "" -#: ipaserver/plugins/dns.py:4245 +#: ipaserver/plugins/dns.py:4246 msgid "DNS Forward Zones" msgstr "" -#: ipaserver/plugins/dns.py:4246 +#: ipaserver/plugins/dns.py:4247 msgid "DNS Forward Zone" msgstr "" -#: ipaserver/plugins/dns.py:4339 ipaclient/remote_plugins/2_114/dns.py:1246 +#: ipaserver/plugins/dns.py:4340 ipaclient/remote_plugins/2_114/dns.py:1246 msgid "Create new DNS forward zone." msgstr "" -#: ipaserver/plugins/dns.py:4353 ipaserver/plugins/dns.py:4403 +#: ipaserver/plugins/dns.py:4354 ipaserver/plugins/dns.py:4404 msgid "Please specify forwarders." msgstr "" -#: ipaserver/plugins/dns.py:4370 ipaclient/remote_plugins/2_114/dns.py:1367 +#: ipaserver/plugins/dns.py:4371 ipaclient/remote_plugins/2_114/dns.py:1367 msgid "Delete DNS forward zone." msgstr "" -#: ipaserver/plugins/dns.py:4372 +#: ipaserver/plugins/dns.py:4373 #, python-format msgid "Deleted DNS forward zone \"%(value)s\"" msgstr "" -#: ipaserver/plugins/dns.py:4377 ipaclient/remote_plugins/2_114/dns.py:1590 +#: ipaserver/plugins/dns.py:4378 ipaclient/remote_plugins/2_114/dns.py:1590 msgid "Modify DNS forward zone." msgstr "" -#: ipaserver/plugins/dns.py:4418 ipaclient/remote_plugins/2_114/dns.py:1481 +#: ipaserver/plugins/dns.py:4419 ipaclient/remote_plugins/2_114/dns.py:1481 msgid "Search for DNS forward zones." msgstr "" -#: ipaserver/plugins/dns.py:4423 ipaclient/remote_plugins/2_114/dns.py:1725 +#: ipaserver/plugins/dns.py:4424 ipaclient/remote_plugins/2_114/dns.py:1725 msgid "Display information about a DNS forward zone." msgstr "" -#: ipaserver/plugins/dns.py:4428 ipaclient/remote_plugins/2_114/dns.py:1409 +#: ipaserver/plugins/dns.py:4429 ipaclient/remote_plugins/2_114/dns.py:1409 msgid "Disable DNS Forward Zone." msgstr "" -#: ipaserver/plugins/dns.py:4429 +#: ipaserver/plugins/dns.py:4430 #, python-format msgid "Disabled DNS forward zone \"%(value)s\"" msgstr "" -#: ipaserver/plugins/dns.py:4434 ipaclient/remote_plugins/2_114/dns.py:1445 +#: ipaserver/plugins/dns.py:4435 ipaclient/remote_plugins/2_114/dns.py:1445 msgid "Enable DNS Forward Zone." msgstr "" -#: ipaserver/plugins/dns.py:4435 +#: ipaserver/plugins/dns.py:4436 #, python-format msgid "Enabled DNS forward zone \"%(value)s\"" msgstr "" -#: ipaserver/plugins/dns.py:4445 ipaclient/remote_plugins/2_114/dns.py:1330 +#: ipaserver/plugins/dns.py:4446 ipaclient/remote_plugins/2_114/dns.py:1330 msgid "Add a permission for per-forward zone access delegation." msgstr "" -#: ipaserver/plugins/dns.py:4450 ipaclient/remote_plugins/2_114/dns.py:1688 +#: ipaserver/plugins/dns.py:4451 ipaclient/remote_plugins/2_114/dns.py:1688 msgid "Remove a permission for per-forward zone access delegation." msgstr "" -#: ipaserver/plugins/dns.py:4458 +#: ipaserver/plugins/dns.py:4459 msgid "IPA DNS records" msgstr "" -#: ipaserver/plugins/dns.py:4462 +#: ipaserver/plugins/dns.py:4463 msgid "IPA location records" msgstr "" -#: ipaserver/plugins/dns.py:4469 +#: ipaserver/plugins/dns.py:4470 msgid "Update location and IPA server DNS records" msgstr "" -#: ipaserver/plugins/dns.py:4480 +#: ipaserver/plugins/dns.py:4481 msgid "Result of the command" msgstr "" -#: ipaserver/plugins/dns.py:4487 +#: ipaserver/plugins/dns.py:4488 msgid "Dry run" msgstr "" -#: ipaserver/plugins/dns.py:4488 +#: ipaserver/plugins/dns.py:4489 msgid "Do not update records only return expected records" msgstr "" -#: ipaserver/plugins/certprofile.py:21 +#: ipaserver/plugins/dogtag.py:1315 +msgid "Failed to authenticate to CA REST API" +msgstr "" + +#: ipaserver/plugins/dogtag.py:1355 +msgid "REST API is not logged in." +msgstr "" + +#: ipaserver/plugins/dogtag.py:1377 +#, python-format +msgid "Non-2xx response from CA REST API: %(status)d. %(explanation)s" +msgstr "" + +#: ipaserver/plugins/dogtag.py:1403 +msgid "Unable to communicate with CMS" +msgstr "" + +#: ipaserver/plugins/dogtag.py:1681 ipaserver/plugins/dogtag.py:2188 +#: ipaserver/plugins/dogtag.py:2198 +msgid "Response from CA was not valid JSON" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:39 msgid "" "\n" -"Manage Certificate Profiles\n" +"Host-based access control\n" "\n" -"Certificate Profiles are used by Certificate Authority (CA) in the signing " -"of\n" -"certificates to determine if a Certificate Signing Request (CSR) is " -"acceptable,\n" -"and if so what features and extensions will be present on the certificate.\n" +"Control who can access what services on what hosts. You\n" +"can use HBAC to control which users or groups can\n" +"access a service, or group of services, on a target host.\n" "\n" -"The Certificate Profile format is the property-list format understood by " -"the\n" -"Dogtag or Red Hat Certificate System CA.\n" +"You can also specify a category of users and target hosts.\n" +"This is currently limited to \"all\", but might be expanded in the\n" +"future.\n" "\n" -"PROFILE ID SYNTAX:\n" +"Target hosts in HBAC rules must be hosts managed by IPA.\n" "\n" -"A Profile ID is a string without spaces or punctuation starting with a " -"letter\n" -"and followed by a sequence of letters, digits or underscore (\"_\").\n" +"The available services and groups of services are controlled by the\n" +"hbacsvc and hbacsvcgroup plug-ins respectively.\n" "\n" "EXAMPLES:\n" "\n" -" Import a profile that will not store issued certificates:\n" -" ipa certprofile-import ShortLivedUserCert \\\n" -" --file UserCert.profile --desc \"User Certificates\" \\\n" -" --store=false\n" +" Create a rule, \"test1\", that grants all users access to the host \"server" +"\" from\n" +" anywhere:\n" +" ipa hbacrule-add --usercat=all test1\n" +" ipa hbacrule-add-host --hosts=server.example.com test1\n" "\n" -" Delete a certificate profile:\n" -" ipa certprofile-del ShortLivedUserCert\n" +" Display the properties of a named HBAC rule:\n" +" ipa hbacrule-show test1\n" "\n" -" Show information about a profile:\n" -" ipa certprofile-show ShortLivedUserCert\n" +" Create a rule for a specific service. This lets the user john access\n" +" the sshd service on any machine from any machine:\n" +" ipa hbacrule-add --hostcat=all john_sshd\n" +" ipa hbacrule-add-user --users=john john_sshd\n" +" ipa hbacrule-add-service --hbacsvcs=sshd john_sshd\n" "\n" -" Save profile configuration to a file:\n" -" ipa certprofile-show caIPAserviceCert --out caIPAserviceCert.cfg\n" +" Create a rule for a new service group. This lets the user john access\n" +" the FTP service on any machine from any machine:\n" +" ipa hbacsvcgroup-add ftpers\n" +" ipa hbacsvc-add sftp\n" +" ipa hbacsvcgroup-add-member --hbacsvcs=ftp --hbacsvcs=sftp ftpers\n" +" ipa hbacrule-add --hostcat=all john_ftp\n" +" ipa hbacrule-add-user --users=john john_ftp\n" +" ipa hbacrule-add-service --hbacsvcgroups=ftpers john_ftp\n" "\n" -" Search for profiles that do not store certificates:\n" -" ipa certprofile-find --store=false\n" -"\n" -"PROFILE CONFIGURATION FORMAT:\n" -"\n" -"The profile configuration format is the raw property-list format\n" -"used by Dogtag Certificate System. The XML format is not supported.\n" -"\n" -"The following restrictions apply to profiles managed by FreeIPA:\n" -"\n" -"- When importing a profile the \"profileId\" field, if present, must\n" -" match the ID given on the command line.\n" -"\n" -"- The \"classId\" field must be set to \"caEnrollImpl\"\n" -"\n" -"- The \"auth.instance_id\" field must be set to \"raCertAuth\"\n" -"\n" -"- The \"certReqInputImpl\" input class and \"certOutputImpl\" output\n" -" class must be used.\n" +" Disable a named HBAC rule:\n" +" ipa hbacrule-disable test1\n" "\n" +" Remove a named HBAC rule:\n" +" ipa hbacrule-del allow_server\n" msgstr "" -#: ipaserver/plugins/certprofile.py:95 -msgid "invalid Profile ID" +#: ipaserver/plugins/hbacrule.py:108 +msgid "The deny type has been deprecated." msgstr "" -#: ipaserver/plugins/certprofile.py:106 ipaserver/plugins/certprofile.py:116 -msgid "Certificate Profile" +#: ipaserver/plugins/hbacrule.py:130 +msgid "HBAC rule" msgstr "" -#: ipaserver/plugins/certprofile.py:107 ipaserver/plugins/certprofile.py:115 -msgid "Certificate Profiles" +#: ipaserver/plugins/hbacrule.py:131 +msgid "HBAC rules" msgstr "" -#: ipaserver/plugins/certprofile.py:123 -msgid "Profile ID for referring to this profile" +#: ipaserver/plugins/hbacrule.py:201 +msgid "HBAC Rules" msgstr "" -#: ipaserver/plugins/certprofile.py:126 -msgid "Profile configuration" +#: ipaserver/plugins/hbacrule.py:212 +msgid "Rule type (allow)" msgstr "" -#: ipaserver/plugins/certprofile.py:132 -msgid "Profile description" +#: ipaserver/plugins/hbacrule.py:213 +msgid "Rule type" msgstr "" -#: ipaserver/plugins/certprofile.py:133 -msgid "Brief description of this profile" +#: ipaserver/plugins/hbacrule.py:236 +msgid "Source host category" msgstr "" -#: ipaserver/plugins/certprofile.py:138 -msgid "Store issued certificates" +#: ipaserver/plugins/hbacrule.py:237 +msgid "Source host category the rule applies to" msgstr "" -#: ipaserver/plugins/certprofile.py:139 -msgid "Whether to store certs issued using this profile" +#: ipaserver/plugins/hbacrule.py:243 ipaserver/plugins/caacl.py:207 +msgid "Service category" msgstr "" -#: ipaserver/plugins/certprofile.py:188 -msgid "Search for Certificate Profiles." +#: ipaserver/plugins/hbacrule.py:244 +msgid "Service category the rule applies to" msgstr "" -#: ipaserver/plugins/certprofile.py:190 +#: ipaserver/plugins/hbacrule.py:277 +msgid "Source Hosts" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:282 +msgid "Source Host Groups" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:286 ipaserver/plugins/hbacsvc.py:95 +msgid "HBAC Services" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:290 ipaserver/plugins/hbacsvcgroup.py:108 +msgid "HBAC Service Groups" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:300 +msgid "Create a new HBAC rule." +msgstr "" + +#: ipaserver/plugins/hbacrule.py:302 #, python-format -msgid "%(count)d profile matched" -msgid_plural "%(count)d profiles matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/certprofile.py:200 -msgid "Display the properties of a Certificate Profile." +msgid "Added HBAC rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/certprofile.py:204 -msgid "Write profile configuration to file" +#: ipaserver/plugins/hbacrule.py:314 +msgid "Delete an HBAC rule." msgstr "" -#: ipaserver/plugins/certprofile.py:221 -msgid "Import a Certificate Profile." -msgstr "" - -#: ipaserver/plugins/certprofile.py:222 +#: ipaserver/plugins/hbacrule.py:316 #, python-format -msgid "Imported profile \"%(value)s\"" +msgid "Deleted HBAC rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/certprofile.py:226 -msgid "Filename of a raw profile. The XML format is not supported." +#: ipaserver/plugins/hbacrule.py:331 +msgid "Modify an HBAC rule." msgstr "" -#: ipaserver/plugins/certprofile.py:247 +#: ipaserver/plugins/hbacrule.py:333 #, python-format -msgid "Profile data specifies profileId multiple times: %(values)s" +msgid "Modified HBAC rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/certprofile.py:255 -#, python-format -msgid "Profile ID '%(cli_value)s' does not match profile data '%(file_value)s'" -msgstr "" - -#: ipaserver/plugins/certprofile.py:281 -msgid "Delete a Certificate Profile." -msgstr "" - -#: ipaserver/plugins/certprofile.py:282 -#, python-format -msgid "Deleted profile \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certprofile.py:289 -#, python-format -msgid "Predefined profile '%(profile_id)s' cannot be deleted" -msgstr "" - -#: ipaserver/plugins/certprofile.py:304 -msgid "Modify Certificate Profile configuration." -msgstr "" - -#: ipaserver/plugins/certprofile.py:305 -#, python-format -msgid "Modified Certificate Profile \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/certprofile.py:310 -msgid "File containing profile configuration" -msgstr "" - -#: ipaserver/plugins/certprofile.py:322 -msgid "Certificate profiles cannot be renamed" -msgstr "" - -#: ipaserver/plugins/certprofile.py:327 -msgid "Insufficient privilege to modify a certificate profile." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:26 +#: ipaserver/plugins/hbacrule.py:356 ipaserver/plugins/caacl.py:302 msgid "" -"\n" -"Service Constrained Delegation\n" -"\n" -"Manage rules to allow constrained delegation of credentials so\n" -"that a service can impersonate a user when communicating with another\n" -"service without requiring the user to actually forward their TGT.\n" -"This makes for a much better method of delegating credentials as it\n" -"prevents exposure of the short term secret of the user.\n" -"\n" -"The naming convention is to append the word \"target\" or \"targets\" to\n" -"a matching rule name. This is not mandatory but helps conceptually\n" -"to associate rules and targets.\n" -"\n" -"A rule consists of two things:\n" -" - A list of targets the rule applies to\n" -" - A list of memberPrincipals that are allowed to delegate for\n" -" those targets\n" -"\n" -"A target consists of a list of principals that can be delegated.\n" -"\n" -"In English, a rule says that this principal can delegate as this\n" -"list of principals, as defined by these targets.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new constrained delegation rule:\n" -" ipa servicedelegationrule-add ftp-delegation\n" -"\n" -" Add a new constrained delegation target:\n" -" ipa servicedelegationtarget-add ftp-delegation-target\n" -"\n" -" Add a principal to the rule:\n" -" ipa servicedelegationrule-add-member --principals=ftp/ipa.example." -"com ftp-delegation\n" -"\n" -" Add our target to the rule:\n" -" ipa servicedelegationrule-add-target --servicedelegationtargets=ftp-" -"delegation-target ftp-delegation\n" -"\n" -" Add a principal to the target:\n" -" ipa servicedelegationtarget-add-member --principals=ldap/ipa.example." -"com ftp-delegation-target\n" -"\n" -" Display information about a named delegation rule and target:\n" -" ipa servicedelegationrule_show ftp-delegation\n" -" ipa servicedelegationtarget_show ftp-delegation-target\n" -"\n" -" Remove a constrained delegation:\n" -" ipa servicedelegationrule-del ftp-delegation-target\n" -" ipa servicedelegationtarget-del ftp-delegation\n" -"\n" -"In this example the ftp service can get a TGT for the ldap service on\n" -"the bound user's behalf.\n" -"\n" -"It is strongly discouraged to modify the delegations that ship with\n" -"IPA, ipa-http-delegation and its targets ipa-cifs-delegation-targets and\n" -"ipa-ldap-delegation-targets. Incorrect changes can remove the ability\n" -"to delegate, causing the framework to stop functioning.\n" +"service category cannot be set to 'all' while there are allowed services" msgstr "" -#: ipaserver/plugins/servicedelegation.py:151 -#: ipaserver/plugins/delegation.py:75 ipaserver/plugins/delegation.py:76 -msgid "Delegation name" +#: ipaserver/plugins/hbacrule.py:365 +msgid "Search for HBAC rules." msgstr "" -#: ipaserver/plugins/servicedelegation.py:156 -msgid "Allowed Target" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:161 -msgid "Allowed to Impersonate" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:166 -msgid "Member principals" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:173 -msgid "Add target to a named service delegation." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:252 -msgid "Remove member from a named service delegation." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:343 -#: ipaserver/plugins/servicedelegation.py:376 -msgid "service delegation rule" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:344 -msgid "service delegation rules" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:355 -msgid "Service delegation rules" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:356 -msgid "Service delegation rule" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:361 -msgid "Create a new service delegation rule." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:363 +#: ipaserver/plugins/hbacrule.py:368 #, python-format -msgid "Added service delegation rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:368 -msgid "Delete service delegation." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:370 -#, python-format -msgid "Deleted service delegation \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:378 -msgid "privileged service delegation rule" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:385 -msgid "Search for service delegations rule." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:388 -#, python-format -msgid "%(count)d service delegation rule matched" -msgid_plural "%(count)d service delegation rules matched" +msgid "%(count)d HBAC rule matched" +msgid_plural "%(count)d HBAC rules matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/servicedelegation.py:395 -msgid "Display information about a named service delegation rule." +#: ipaserver/plugins/hbacrule.py:375 +msgid "Display the properties of an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:400 -msgid "Add member to a named service delegation rule." +#: ipaserver/plugins/hbacrule.py:381 +msgid "Enable an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:409 -msgid "Remove member from a named service delegation rule." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:417 -msgid "Add target to a named service delegation rule." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:427 -msgid "Remove target from a named service delegation rule." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:436 -#: ipaserver/plugins/servicedelegation.py:465 -msgid "service delegation target" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:437 -msgid "service delegation targets" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:444 -msgid "Service delegation targets" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:445 -msgid "Service delegation target" -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:450 -msgid "Create a new service delegation target." -msgstr "" - -#: ipaserver/plugins/servicedelegation.py:452 +#: ipaserver/plugins/hbacrule.py:383 #, python-format -msgid "Added service delegation target \"%(value)s\"" +msgid "Enabled HBAC rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/servicedelegation.py:457 -msgid "Delete service delegation target." +#: ipaserver/plugins/hbacrule.py:411 +msgid "Disable an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:459 +#: ipaserver/plugins/hbacrule.py:413 #, python-format -msgid "Deleted service delegation target \"%(value)s\"" +msgid "Disabled HBAC rule \"%(value)s\"" msgstr "" -#: ipaserver/plugins/servicedelegation.py:467 -msgid "privileged service delegation target" +#: ipaserver/plugins/hbacrule.py:447 ipaserver/plugins/hbacrule.py:478 +msgid "Access time" msgstr "" -#: ipaserver/plugins/servicedelegation.py:474 -msgid "Search for service delegation target." +#: ipaserver/plugins/hbacrule.py:503 +msgid "Add users and groups to an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:477 -#, python-format -msgid "%(count)d service delegation target matched" -msgid_plural "%(count)d service delegation targets matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/servicedelegation.py:510 -msgid "Display information about a named service delegation target." +#: ipaserver/plugins/hbacrule.py:525 +msgid "Remove users and groups from an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:515 -msgid "Add member to a named service delegation target." +#: ipaserver/plugins/hbacrule.py:534 +msgid "Add target hosts and hostgroups to an HBAC rule." msgstr "" -#: ipaserver/plugins/servicedelegation.py:524 -msgid "Remove member from a named service delegation target." +#: ipaserver/plugins/hbacrule.py:556 +msgid "Remove target hosts and hostgroups from an HBAC rule." +msgstr "" + +#: ipaserver/plugins/hbacrule.py:565 +msgid "Add source hosts and hostgroups to an HBAC rule." +msgstr "" + +#: ipaserver/plugins/hbacrule.py:578 +msgid "Remove source hosts and hostgroups from an HBAC rule." +msgstr "" + +#: ipaserver/plugins/hbacrule.py:591 +msgid "Add services to an HBAC rule." +msgstr "" + +#: ipaserver/plugins/hbacrule.py:606 ipaserver/plugins/caacl.py:459 +msgid "services cannot be added when service category='all'" +msgstr "" + +#: ipaserver/plugins/hbacrule.py:613 +msgid "Remove service and service groups from an HBAC rule." msgstr "" #: ipaserver/plugins/ldap2.py:270 msgid "Could not read UPG Definition originfilter. Check your permissions." msgstr "" +#: ipaserver/plugins/hbacsvc.py:28 +msgid "" +"\n" +"HBAC Services\n" +"\n" +"The PAM services that HBAC can control access to. The name used here\n" +"must match the service name that PAM is evaluating.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new HBAC service:\n" +" ipa hbacsvc-add tftp\n" +"\n" +" Modify an existing HBAC service:\n" +" ipa hbacsvc-mod --desc=\"TFTP service\" tftp\n" +"\n" +" Search for HBAC services. This example will return two results, the FTP\n" +" service and the newly-added tftp service:\n" +" ipa hbacsvc-find ftp\n" +"\n" +" Delete an HBAC service:\n" +" ipa hbacsvc-del tftp\n" +"\n" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:61 ipaserver/plugins/hbacsvc.py:102 +msgid "HBAC service" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:62 +msgid "HBAC services" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:96 +msgid "HBAC Service" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:101 +msgid "Service name" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:109 +msgid "HBAC service description" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:117 +msgid "Add a new HBAC service." +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:119 +#, python-format +msgid "Added HBAC service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:125 +msgid "Delete an existing HBAC service." +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:127 +#, python-format +msgid "Deleted HBAC service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:133 +msgid "Modify an HBAC service." +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:135 +#, python-format +msgid "Modified HBAC service \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:141 +msgid "Search for HBAC services." +msgstr "" + +#: ipaserver/plugins/hbacsvc.py:144 +#, python-format +msgid "%(count)d HBAC service matched" +msgid_plural "%(count)d HBAC services matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/hbacsvc.py:151 +msgid "Display information about an HBAC service." +msgstr "" + +#: ipaserver/plugins/topology.py:24 +msgid "" +"\n" +"Topology\n" +"\n" +"Management of a replication topology at domain level 1.\n" +msgstr "" + +#: ipaserver/plugins/topology.py:28 +msgid "" +"\n" +"IPA server's data is stored in LDAP server in two suffixes:\n" +"* domain suffix, e.g., 'dc=example,dc=com', contains all domain related " +"data\n" +"* ca suffix, 'o=ipaca', is present only on server with CA installed. It\n" +" contains data for Certificate Server component\n" +msgstr "" + +#: ipaserver/plugins/topology.py:33 +msgid "" +"\n" +"Data stored on IPA servers is replicated to other IPA servers. The way it " +"is\n" +"replicated is defined by replication agreements. Replication agreements " +"needs\n" +"to be set for both suffixes separately. On domain level 0 they are managed\n" +"using ipa-replica-manage and ipa-csreplica-manage tools. With domain level " +"1\n" +"they are managed centrally using `ipa topology*` commands.\n" +msgstr "" + +#: ipaserver/plugins/topology.py:39 +msgid "" +"\n" +"Agreements are represented by topology segments. By default topology " +"segment\n" +"represents 2 replication agreements - one for each direction, e.g., A to B " +"and\n" +"B to A. Creation of unidirectional segments is not allowed.\n" +msgstr "" + +#: ipaserver/plugins/topology.py:43 +msgid "" +"\n" +"To verify that no server is disconnected in the topology of the given " +"suffix,\n" +"use:\n" +" ipa topologysuffix-verify $suffix\n" +msgstr "" + +#: ipaserver/plugins/topology.py:47 +msgid "" +"\n" +"\n" +"Examples:\n" +" Find all IPA servers:\n" +" ipa server-find\n" +msgstr "" + +#: ipaserver/plugins/topology.py:52 +msgid "" +"\n" +" Find all suffixes:\n" +" ipa topologysuffix-find\n" +msgstr "" + +#: ipaserver/plugins/topology.py:55 +msgid "" +"\n" +" Add topology segment to 'domain' suffix:\n" +" ipa topologysegment-add domain --left IPA_SERVER_A --right IPA_SERVER_B\n" +msgstr "" + +#: ipaserver/plugins/topology.py:58 +msgid "" +"\n" +" Add topology segment to 'ca' suffix:\n" +" ipa topologysegment-add ca --left IPA_SERVER_A --right IPA_SERVER_B\n" +msgstr "" + +#: ipaserver/plugins/topology.py:61 +msgid "" +"\n" +" List all topology segments in 'domain' suffix:\n" +" ipa topologysegment-find domain\n" +msgstr "" + +#: ipaserver/plugins/topology.py:64 +msgid "" +"\n" +" List all topology segments in 'ca' suffix:\n" +" ipa topologysegment-find ca\n" +msgstr "" + +#: ipaserver/plugins/topology.py:67 +msgid "" +"\n" +" Delete topology segment in 'domain' suffix:\n" +" ipa topologysegment-del domain segment_name\n" +msgstr "" + +#: ipaserver/plugins/topology.py:70 +msgid "" +"\n" +" Delete topology segment in 'ca' suffix:\n" +" ipa topologysegment-del ca segment_name\n" +msgstr "" + +#: ipaserver/plugins/topology.py:73 +msgid "" +"\n" +" Verify topology of 'domain' suffix:\n" +" ipa topologysuffix-verify domain\n" +msgstr "" + +#: ipaserver/plugins/topology.py:76 +msgid "" +"\n" +" Verify topology of 'ca' suffix:\n" +" ipa topologysuffix-verify ca\n" +msgstr "" + +#: ipaserver/plugins/topology.py:92 +#, python-brace-format +msgid "Topology management requires minimum domain level {0} " +msgstr "" + +#: ipaserver/plugins/topology.py:104 +msgid "segment" +msgstr "" + +#: ipaserver/plugins/topology.py:105 +msgid "segments" +msgstr "" + +#: ipaserver/plugins/topology.py:119 +msgid "Topology Segments" +msgstr "" + +#: ipaserver/plugins/topology.py:120 +msgid "Topology Segment" +msgstr "" + +#: ipaserver/plugins/topology.py:128 +msgid "Segment name" +msgstr "" + +#: ipaserver/plugins/topology.py:132 +msgid "Arbitrary string identifying the segment" +msgstr "" + +#: ipaserver/plugins/topology.py:140 +msgid "Left node" +msgstr "" + +#: ipaserver/plugins/topology.py:142 +msgid "Left replication node - an IPA server" +msgstr "" + +#: ipaserver/plugins/topology.py:151 +msgid "Right node" +msgstr "" + +#: ipaserver/plugins/topology.py:153 +msgid "Right replication node - an IPA server" +msgstr "" + +#: ipaserver/plugins/topology.py:159 +msgid "Connectivity" +msgstr "" + +#: ipaserver/plugins/topology.py:163 +msgid "Direction of replication between left and right replication node" +msgstr "" + +#: ipaserver/plugins/topology.py:170 +msgid "Attributes to strip" +msgstr "" + +#: ipaserver/plugins/topology.py:172 +msgid "" +"A space separated list of attributes which are removed from replication " +"updates." +msgstr "" + +#: ipaserver/plugins/topology.py:179 +msgid "" +"Attributes that are not replicated to a consumer server during a fractional " +"update. E.g., `(objectclass=*) $ EXCLUDE accountlockout memberof" +msgstr "" + +#: ipaserver/plugins/topology.py:186 +msgid "Attributes for total update" +msgstr "" + +#: ipaserver/plugins/topology.py:187 +msgid "" +"Attributes that are not replicated to a consumer server during a total " +"update. E.g. (objectclass=*) $ EXCLUDE accountlockout" +msgstr "" + +#: ipaserver/plugins/topology.py:194 +msgid "Session timeout" +msgstr "" + +#: ipaserver/plugins/topology.py:196 +msgid "" +"Number of seconds outbound LDAP operations waits for a response from the " +"remote replica before timing out and failing" +msgstr "" + +#: ipaserver/plugins/topology.py:203 +msgid "Replication agreement enabled" +msgstr "" + +#: ipaserver/plugins/topology.py:204 +msgid "" +"Whether a replication agreement is active, meaning whether replication is " +"occurring per that agreement" +msgstr "" + +#: ipaserver/plugins/topology.py:226 +#, python-format +msgid "left node is not a topology node: %(leftnode)s" +msgstr "" + +#: ipaserver/plugins/topology.py:233 +#, python-format +msgid "right node is not a topology node: %(rightnode)s" +msgstr "" + +#: ipaserver/plugins/topology.py:250 +msgid "left node and right node must not be the same" +msgstr "" + +#: ipaserver/plugins/topology.py:261 +#, python-brace-format +msgid "left node ({host}) does not support suffix '{suff}'" +msgstr "" + +#: ipaserver/plugins/topology.py:269 +#, python-brace-format +msgid "right node ({host}) does not support suffix '{suff}'" +msgstr "" + +#: ipaserver/plugins/topology.py:277 +msgid "Search for topology segments." +msgstr "" + +#: ipaserver/plugins/topology.py:280 +#, python-format +msgid "%(count)d segment matched" +msgid_plural "%(count)d segments matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/topology.py:287 +msgid "Add a new segment." +msgstr "" + +#: ipaserver/plugins/topology.py:289 +#, python-format +msgid "Added segment \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:300 +msgid "Delete a segment." +msgstr "" + +#: ipaserver/plugins/topology.py:302 +#, python-format +msgid "Deleted segment \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:312 +msgid "Modify a segment." +msgstr "" + +#: ipaserver/plugins/topology.py:314 +#, python-format +msgid "Modified segment \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:325 +msgid "" +"Request a full re-initialization of the node retrieving data from the other " +"node." +msgstr "" + +#: ipaserver/plugins/topology.py:329 +#, python-format +msgid "%(value)s" +msgstr "" + +#: ipaserver/plugins/topology.py:334 +msgid "Initialize left node" +msgstr "" + +#: ipaserver/plugins/topology.py:339 +msgid "Initialize right node" +msgstr "" + +#: ipaserver/plugins/topology.py:344 +msgid "Stop already started refresh of chosen node(s)" +msgstr "" + +#: ipaserver/plugins/topology.py:365 +msgid "left or right node has to be specified" +msgstr "" + +#: ipaserver/plugins/topology.py:370 +msgid "only one node can be specified" +msgstr "" + +#: ipaserver/plugins/topology.py:374 +#, python-format +msgid "Replication refresh for segment: \"%(pkey)s\" requested." +msgstr "" + +#: ipaserver/plugins/topology.py:377 +#, python-format +msgid "Stopping of replication refresh for segment: \"%(pkey)s\" requested." +msgstr "" + +#: ipaserver/plugins/topology.py:398 +msgid "Display a segment." +msgstr "" + +#: ipaserver/plugins/topology.py:407 +msgid "suffix" +msgstr "" + +#: ipaserver/plugins/topology.py:408 +msgid "suffixes" +msgstr "" + +#: ipaserver/plugins/topology.py:412 +msgid "Topology suffixes" +msgstr "" + +#: ipaserver/plugins/topology.py:413 +msgid "Topology suffix" +msgstr "" + +#: ipaserver/plugins/topology.py:420 +msgid "Suffix name" +msgstr "" + +#: ipaserver/plugins/topology.py:425 +msgid "Managed LDAP suffix DN" +msgstr "" + +#: ipaserver/plugins/topology.py:432 +msgid "Search for topology suffixes." +msgstr "" + +#: ipaserver/plugins/topology.py:435 +#, python-format +msgid "%(count)d topology suffix matched" +msgid_plural "%(count)d topology suffixes matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/topology.py:442 +msgid "Delete a topology suffix." +msgstr "" + +#: ipaserver/plugins/topology.py:446 +#, python-format +msgid "Deleted topology suffix \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:456 +msgid "Add a new topology suffix to be managed." +msgstr "" + +#: ipaserver/plugins/topology.py:460 +#, python-format +msgid "Added topology suffix \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:470 +msgid "Modify a topology suffix." +msgstr "" + +#: ipaserver/plugins/topology.py:474 +#, python-format +msgid "Modified topology suffix \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/topology.py:484 +msgid "Show managed suffix." +msgstr "" + +#: ipaserver/plugins/topology.py:489 +msgid "" +"\n" +"Verify replication topology for suffix.\n" +"\n" +"Checks done:\n" +" 1. check if a topology is not disconnected. In other words if there are\n" +" replication paths between all servers.\n" +" 2. check if servers don't have more than the recommended number of\n" +" replication agreements\n" +msgstr "" + +#: ipaserver/plugins/user.py:78 ipaclient/remote_plugins/2_114/user.py:19 +msgid "" +"\n" +"Users\n" +"\n" +"Manage user entries. All users are POSIX users.\n" +"\n" +"IPA supports a wide range of username formats, but you need to be aware of " +"any\n" +"restrictions that may apply to your particular environment. For example,\n" +"usernames that start with a digit or usernames that exceed a certain length\n" +"may cause problems for some UNIX systems.\n" +"Use 'ipa config-mod' to change the username format allowed by IPA tools.\n" +"\n" +"Disabling a user account prevents that user from obtaining new Kerberos\n" +"credentials. It does not invalidate any credentials that have already\n" +"been issued.\n" +"\n" +"Password management is not a part of this module. For more information\n" +"about this topic please see: ipa help passwd\n" +"\n" +"Account lockout on password failure happens per IPA master. The user-status\n" +"command can be used to identify which master the user is locked out on.\n" +"It is on that master the administrator must unlock the user.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new user:\n" +" ipa user-add --first=Tim --last=User --password tuser1\n" +"\n" +" Find all users whose entries include the string \"Tim\":\n" +" ipa user-find Tim\n" +"\n" +" Find all users with \"Tim\" as the first name:\n" +" ipa user-find --first=Tim\n" +"\n" +" Disable a user account:\n" +" ipa user-disable tuser1\n" +"\n" +" Enable a user account:\n" +" ipa user-enable tuser1\n" +"\n" +" Delete a user:\n" +" ipa user-del tuser1\n" +msgstr "" + +#: ipaserver/plugins/user.py:144 ipaserver/plugins/group.py:193 +#: ipaserver/plugins/group.py:395 ipaserver/plugins/group.py:656 +msgid "group" +msgstr "" + +#: ipaserver/plugins/user.py:389 ipaclient/remote_plugins/2_114/user.py:223 +msgid "Account disabled" +msgstr "" + +#: ipaserver/plugins/user.py:392 ipaserver/plugins/user.py:1089 +msgid "Preserved user" +msgstr "" + +#: ipaserver/plugins/user.py:448 ipaclient/remote_plugins/2_114/user.py:339 +msgid "Add a new user." +msgstr "" + +#: ipaserver/plugins/user.py:450 +#, python-format +msgid "Added user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:457 ipaclient/remote_plugins/2_114/user.py:601 +msgid "Don't create user private group" +msgstr "" + +#: ipaserver/plugins/user.py:516 ipaserver/plugins/stageuser.py:329 +#: ipaserver/plugins/stageuser.py:533 ipaserver/plugins/host.py:681 +#: ipaserver/plugins/baseuser.py:567 +#, python-format +msgid "can be at most %(len)d characters" +msgstr "" + +#: ipaserver/plugins/user.py:546 ipaserver/plugins/migration.py:800 +msgid "Default group for new users not found" +msgstr "" + +#: ipaserver/plugins/user.py:549 +msgid "Default group for new users is not POSIX" +msgstr "" + +#: ipaserver/plugins/user.py:636 ipaclient/remote_plugins/2_114/user.py:645 +msgid "Delete a user." +msgstr "" + +#: ipaserver/plugins/user.py:638 +#, python-format +msgid "Deleted user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:656 +#, python-format +msgid "%s: user is already preserved" +msgstr "" + +#: ipaserver/plugins/user.py:765 ipaclient/remote_plugins/2_114/user.py:1138 +msgid "Modify a user." +msgstr "" + +#: ipaserver/plugins/user.py:767 +#, python-format +msgid "Modified user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:794 ipaclient/remote_plugins/2_114/user.py:750 +msgid "Search for users." +msgstr "" + +#: ipaserver/plugins/user.py:800 ipaserver/plugins/stageuser.py:471 +#, python-format +msgid "%(count)d user matched" +msgid_plural "%(count)d users matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/user.py:805 ipaclient/remote_plugins/2_114/user.py:999 +msgid "Self" +msgstr "" + +#: ipaserver/plugins/user.py:806 ipaclient/remote_plugins/2_114/user.py:1000 +msgid "Display user record for current Kerberos principal" +msgstr "" + +#: ipaserver/plugins/user.py:852 ipaclient/remote_plugins/2_114/user.py:1450 +msgid "Display information about a user." +msgstr "" + +#: ipaserver/plugins/user.py:875 ipaclient/remote_plugins/2_156/user.py:1801 +msgid "Undelete a delete user account." +msgstr "" + +#: ipaserver/plugins/user.py:878 +#, python-format +msgid "Undeleted user account \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:892 +#, python-format +msgid "user \"%s\" is already active" +msgstr "" + +#: ipaserver/plugins/user.py:920 ipaclient/remote_plugins/2_156/user.py:1683 +msgid "Move deleted user into staged area" +msgstr "" + +#: ipaserver/plugins/user.py:923 +#, python-format +msgid "Staged user account \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1014 ipaclient/remote_plugins/2_114/user.py:684 +msgid "Disable a user account." +msgstr "" + +#: ipaserver/plugins/user.py:1017 +#, python-format +msgid "Disabled user account \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1035 ipaclient/remote_plugins/2_114/user.py:717 +msgid "Enable a user account." +msgstr "" + +#: ipaserver/plugins/user.py:1039 +#, python-format +msgid "Enabled user account \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1056 +msgid "" +"\n" +" Unlock a user account\n" +"\n" +" An account may become locked if the password is entered incorrectly too\n" +" many times within a specific time period as controlled by password\n" +" policy. A locked account is a temporary condition and may be unlocked " +"by\n" +" an administrator." +msgstr "" + +#: ipaserver/plugins/user.py:1065 +#, python-format +msgid "Unlocked account \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1097 +msgid "Failed logins" +msgstr "" + +#: ipaserver/plugins/user.py:1101 +msgid "Last successful authentication" +msgstr "" + +#: ipaserver/plugins/user.py:1105 +msgid "Last failed authentication" +msgstr "" + +#: ipaserver/plugins/user.py:1109 +msgid "Time now" +msgstr "" + +#: ipaserver/plugins/user.py:1117 +msgid "" +"\n" +" Lockout status of a user account\n" +"\n" +" An account may become locked if the password is entered incorrectly too\n" +" many times within a specific time period as controlled by password\n" +" policy. A locked account is a temporary condition and may be unlocked " +"by\n" +" an administrator.\n" +"\n" +" This connects to each IPA master and displays the lockout status on\n" +" each one.\n" +"\n" +" To determine whether an account is locked on a given server you need\n" +" to compare the number of failed logins and the time of the last " +"failure.\n" +" For an account to be locked it must exceed the maxfail failures within\n" +" the failinterval duration as specified in the password policy " +"associated\n" +" with the user.\n" +"\n" +" The failed login counter is modified only when a user attempts a log in\n" +" so it is possible that an account may appear locked but the last failed\n" +" login attempt is older than the lockouttime of the password policy. " +"This\n" +" means that the user may attempt a login again. " +msgstr "" + +#: ipaserver/plugins/user.py:1171 +#, python-format +msgid "%(host)s failed: %(error)s" +msgstr "" + +#: ipaserver/plugins/user.py:1209 +#, python-format +msgid "%(host)s failed" +msgstr "" + +#: ipaserver/plugins/user.py:1219 +#, python-format +msgid "Account disabled: %(disabled)s" +msgstr "" + +#: ipaserver/plugins/user.py:1226 ipaclient/remote_plugins/2_156/user.py:665 +msgid "Add one or more certificates to the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1227 +#, python-format +msgid "Added certificates to user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1232 ipaclient/remote_plugins/2_156/user.py:1558 +msgid "Remove one or more certificates to the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1233 +#, python-format +msgid "Removed certificates from user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1238 ipaserver/plugins/baseuser.py:945 +msgid "Add one or more certificate mappings to the user entry." +msgstr "" + +#: ipaserver/plugins/user.py:1243 ipaserver/plugins/baseuser.py:964 +msgid "Remove one or more certificate mappings from the user entry." +msgstr "" + +#: ipaserver/plugins/user.py:1248 ipaclient/remote_plugins/2_164/user.py:726 +msgid "Add a manager to the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1253 ipaclient/remote_plugins/2_164/user.py:1681 +msgid "Remove a manager to the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1258 +msgid "Add new principal alias to the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1259 +#, python-format +msgid "Added new aliases to user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/user.py:1264 +msgid "Remove principal alias from the user entry" +msgstr "" + +#: ipaserver/plugins/user.py:1265 +#, python-format +msgid "Removed aliases from user \"%(value)s\"" +msgstr "" + #: ipaserver/plugins/location.py:33 msgid "" "\n" @@ -15709,1715 +12103,103 @@ msgstr "" msgid "Servers in location" msgstr "" -#: ipaserver/plugins/migration.py:46 +#: ipaserver/plugins/hbacsvcgroup.py:33 msgid "" "\n" -"Migration to IPA\n" +"HBAC Service Groups\n" "\n" -"Migrate users and groups from an LDAP server to IPA.\n" -"\n" -"This performs an LDAP query against the remote server searching for\n" -"users and groups in a container. In order to migrate passwords you need\n" -"to bind as a user that can read the userPassword attribute on the remote\n" -"server. This is generally restricted to high-level admins such as\n" -"cn=Directory Manager in 389-ds (this is the default bind user).\n" -"\n" -"The default user container is ou=People.\n" -"\n" -"The default group container is ou=Groups.\n" -"\n" -"Users and groups that already exist on the IPA server are skipped.\n" -"\n" -"Two LDAP schemas define how group members are stored: RFC2307 and\n" -"RFC2307bis. RFC2307bis uses member and uniquemember to specify group\n" -"members, RFC2307 uses memberUid. The default schema is RFC2307bis.\n" -"\n" -"The schema compat feature allows IPA to reformat data for systems that\n" -"do not support RFC2307bis. It is recommended that this feature is disabled\n" -"during migration to reduce system overhead. It can be re-enabled after\n" -"migration. To migrate with it enabled use the \"--with-compat\" option.\n" -"\n" -"Migrated users do not have Kerberos credentials, they have only their\n" -"LDAP password. To complete the migration process, users need to go\n" -"to http://ipa.example.com/ipa/migration and authenticate using their\n" -"LDAP password in order to generate their Kerberos credentials.\n" -"\n" -"Migration is disabled by default. Use the command ipa config-mod to\n" -"enable it:\n" -"\n" -" ipa config-mod --enable-migration=TRUE\n" -"\n" -"If a base DN is not provided with --basedn then IPA will use either\n" -"the value of defaultNamingContext if it is set or the first value\n" -"in namingContexts set in the root of the remote LDAP server.\n" -"\n" -"Users are added as members to the default user group. This can be a\n" -"time-intensive task so during migration this is done in a batch\n" -"mode for every 100 users. As a result there will be a window in which\n" -"users will be added to IPA but will not be members of the default\n" -"user group.\n" +"HBAC service groups can contain any number of individual services,\n" +"or \"members\". Every group must have a description.\n" "\n" "EXAMPLES:\n" "\n" -" The simplest migration, accepting all defaults:\n" -" ipa migrate-ds ldap://ds.example.com:389\n" +" Add a new HBAC service group:\n" +" ipa hbacsvcgroup-add --desc=\"login services\" login\n" "\n" -" Specify the user and group container. This can be used to migrate user\n" -" and group data from an IPA v1 server:\n" -" ipa migrate-ds --user-container='cn=users,cn=accounts' \\\n" -" --group-container='cn=groups,cn=accounts' \\\n" -" ldap://ds.example.com:389\n" +" Add members to an HBAC service group:\n" +" ipa hbacsvcgroup-add-member --hbacsvcs=sshd --hbacsvcs=login login\n" "\n" -" Since IPA v2 server already contain predefined groups that may collide " -"with\n" -" groups in migrated (IPA v1) server (for example admins, ipausers), users\n" -" having colliding group as their primary group may happen to belong to\n" -" an unknown group on new IPA v2 server.\n" -" Use --group-overwrite-gid option to overwrite GID of already existing " -"groups\n" -" to prevent this issue:\n" -" ipa migrate-ds --group-overwrite-gid \\\n" -" --user-container='cn=users,cn=accounts' \\\n" -" --group-container='cn=groups,cn=accounts' \\\n" -" ldap://ds.example.com:389\n" +" Display information about a named group:\n" +" ipa hbacsvcgroup-show login\n" "\n" -" Migrated users or groups may have object class and accompanied attributes\n" -" unknown to the IPA v2 server. These object classes and attributes may be\n" -" left out of the migration process:\n" -" ipa migrate-ds --user-container='cn=users,cn=accounts' \\\n" -" --group-container='cn=groups,cn=accounts' \\\n" -" --user-ignore-objectclass=radiusprofile \\\n" -" --user-ignore-attribute=radiusgroupname \\\n" -" ldap://ds.example.com:389\n" -"\n" -"LOGGING\n" -"\n" -"Migration will log warnings and errors to the Apache error log. This\n" -"file should be evaluated post-migration to correct or investigate any\n" -"issues that were discovered.\n" -"\n" -"For every 100 users migrated an info-level message will be displayed to\n" -"give the current progress and duration to make it possible to track\n" -"the progress of migration.\n" -"\n" -"If the log level is debug, either by setting debug = True in\n" -"/etc/ipa/default.conf or /etc/ipa/server.conf, then an entry will be " -"printed\n" -"for each user added plus a summary when the default user group is\n" -"updated.\n" +" Delete an HBAC service group:\n" +" ipa hbacsvcgroup-del login\n" msgstr "" -#: ipaserver/plugins/migration.py:145 +#: ipaserver/plugins/hbacsvcgroup.py:64 +msgid "HBAC service group" +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:65 +msgid "HBAC service groups" +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:109 +msgid "HBAC Service Group" +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:114 +msgid "Service group name" +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:121 +msgid "HBAC service group description" +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:129 +msgid "Add a new HBAC service group." +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:131 #, python-format -msgid "" -"Kerberos principal %s already exists. Use 'ipa user-mod' to set it manually." +msgid "Added HBAC service group \"%(value)s\"" msgstr "" -#: ipaserver/plugins/migration.py:146 +#: ipaserver/plugins/hbacsvcgroup.py:137 +msgid "Delete an HBAC service group." +msgstr "" + +#: ipaserver/plugins/hbacsvcgroup.py:139 #, python-format -msgid "" -"Unable to determine if Kerberos principal %s already exists. Use 'ipa user-" -"mod' to set it manually." +msgid "Deleted HBAC service group \"%(value)s\"" msgstr "" -#: ipaserver/plugins/migration.py:147 -msgid "" -"Failed to add user to the default group. Use 'ipa group-add-member' to add " -"manually." +#: ipaserver/plugins/hbacsvcgroup.py:145 +msgid "Modify an HBAC service group." msgstr "" -#: ipaserver/plugins/migration.py:148 -msgid "Migration of LDAP search reference is not supported." -msgstr "" - -#: ipaserver/plugins/migration.py:149 -msgid "Malformed DN" -msgstr "" - -#: ipaserver/plugins/migration.py:194 +#: ipaserver/plugins/hbacsvcgroup.py:147 #, python-format -msgid "%(user)s is not a POSIX user" +msgid "Modified HBAC service group \"%(value)s\"" msgstr "" -#: ipaserver/plugins/migration.py:461 -msgid "" -". Check GID of the existing group. Use --group-overwrite-gid option to " -"overwrite the GID" +#: ipaserver/plugins/hbacsvcgroup.py:153 +msgid "Search for an HBAC service group." msgstr "" -#: ipaserver/plugins/migration.py:476 -msgid "Invalid LDAP URI." -msgstr "" - -#: ipaserver/plugins/migration.py:482 -msgid "Migrate users and groups from DS to IPA." -msgstr "" - -#: ipaserver/plugins/migration.py:529 -msgid "LDAP URI" -msgstr "" - -#: ipaserver/plugins/migration.py:530 -msgid "LDAP URI of DS server to migrate from" -msgstr "" - -#: ipaserver/plugins/migration.py:536 -msgid "bind password" -msgstr "" - -#: ipaserver/plugins/migration.py:543 -msgid "Bind DN" -msgstr "" - -#: ipaserver/plugins/migration.py:549 -msgid "User container" -msgstr "" - -#: ipaserver/plugins/migration.py:550 -msgid "DN of container for users in DS relative to base DN" -msgstr "" - -#: ipaserver/plugins/migration.py:556 -msgid "Group container" -msgstr "" - -#: ipaserver/plugins/migration.py:557 -msgid "DN of container for groups in DS relative to base DN" -msgstr "" - -#: ipaserver/plugins/migration.py:563 -msgid "User object class" -msgstr "" - -#: ipaserver/plugins/migration.py:564 -msgid "Objectclasses used to search for user entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:570 -msgid "Group object class" -msgstr "" - -#: ipaserver/plugins/migration.py:571 -msgid "Objectclasses used to search for group entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:577 -msgid "Ignore user object class" -msgstr "" - -#: ipaserver/plugins/migration.py:578 -msgid "Objectclasses to be ignored for user entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:584 -msgid "Ignore user attribute" -msgstr "" - -#: ipaserver/plugins/migration.py:585 -msgid "Attributes to be ignored for user entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:591 -msgid "Ignore group object class" -msgstr "" - -#: ipaserver/plugins/migration.py:592 -msgid "Objectclasses to be ignored for group entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:598 -msgid "Ignore group attribute" -msgstr "" - -#: ipaserver/plugins/migration.py:599 -msgid "Attributes to be ignored for group entries in DS" -msgstr "" - -#: ipaserver/plugins/migration.py:605 -msgid "Overwrite GID" -msgstr "" - -#: ipaserver/plugins/migration.py:606 -msgid "" -"When migrating a group already existing in IPA domain overwrite the group " -"GID and report as success" -msgstr "" - -#: ipaserver/plugins/migration.py:611 -msgid "LDAP schema" -msgstr "" - -#: ipaserver/plugins/migration.py:612 -msgid "" -"The schema used on the LDAP server. Supported values are RFC2307 and " -"RFC2307bis. The default is RFC2307bis" -msgstr "" - -#: ipaserver/plugins/migration.py:618 -msgid "Continue" -msgstr "" - -#: ipaserver/plugins/migration.py:619 -msgid "" -"Continuous operation mode. Errors are reported but the process continues" -msgstr "" - -#: ipaserver/plugins/migration.py:624 -msgid "Base DN" -msgstr "" - -#: ipaserver/plugins/migration.py:625 -msgid "Base DN on remote LDAP server" -msgstr "" - -#: ipaserver/plugins/migration.py:629 -msgid "Ignore compat plugin" -msgstr "" - -#: ipaserver/plugins/migration.py:630 -msgid "Allows migration despite the usage of compat plugin" -msgstr "" - -#: ipaserver/plugins/migration.py:635 -msgid "CA certificate" -msgstr "" - -#: ipaserver/plugins/migration.py:636 -msgid "Load CA certificate of LDAP server from FILE" -msgstr "" - -#: ipaserver/plugins/migration.py:642 -msgid "Add to default group" -msgstr "" - -#: ipaserver/plugins/migration.py:643 -msgid "Add migrated users without a group to a default group (default: true)" -msgstr "" - -#: ipaserver/plugins/migration.py:650 -msgid "Search scope" -msgstr "" - -#: ipaserver/plugins/migration.py:651 -msgid "" -"LDAP search scope for users and groups: base, onelevel, or subtree. Defaults " -"to onelevel" -msgstr "" - -#: ipaserver/plugins/migration.py:662 -msgid "Lists of objects migrated; categorized by type." -msgstr "" - -#: ipaserver/plugins/migration.py:666 -msgid "Lists of objects that could not be migrated; categorized by type." -msgstr "" - -#: ipaserver/plugins/migration.py:670 -msgid "False if migration mode was disabled." -msgstr "" - -#: ipaserver/plugins/migration.py:674 -msgid "False if migration fails because the compatibility plug-in is enabled." -msgstr "" - -#: ipaserver/plugins/migration.py:678 +#: ipaserver/plugins/hbacsvcgroup.py:156 #, python-format -msgid "%s to exclude from migration" -msgstr "" - -#: ipaserver/plugins/migration.py:680 -msgid "" -"search results for objects to be migrated\n" -"have been truncated by the server;\n" -"migration process might be incomplete\n" -msgstr "" - -#: ipaserver/plugins/migration.py:769 -#, python-format -msgid "" -"%(container)s LDAP search did not return any result (search base: " -"%(search_base)s, objectclass: %(objectclass)s)" -msgstr "" - -#: ipaserver/plugins/service.py:60 -msgid "" -"\n" -"Services\n" -"\n" -"A IPA service represents a service that runs on a host. The IPA service\n" -"record can store a Kerberos principal, an SSL certificate, or both.\n" -"\n" -"An IPA service can be managed directly from a machine, provided that\n" -"machine has been given the correct permission. This is true even for\n" -"machines other than the one the service is associated with. For example,\n" -"requesting an SSL certificate using the host service principal credentials\n" -"of the host. To manage a service using host credentials you need to\n" -"kinit as the host:\n" -"\n" -" # kinit -kt /etc/krb5.keytab host/ipa.example.com@EXAMPLE.COM\n" -"\n" -"Adding an IPA service allows the associated service to request an SSL\n" -"certificate or keytab, but this is performed as a separate step; they\n" -"are not produced as a result of adding the service.\n" -"\n" -"Only the public aspect of a certificate is stored in a service record;\n" -"the private key is not stored.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Add a new IPA service:\n" -" ipa service-add HTTP/web.example.com\n" -"\n" -" Allow a host to manage an IPA service certificate:\n" -" ipa service-add-host --hosts=web.example.com HTTP/web.example.com\n" -" ipa role-add-member --hosts=web.example.com certadmin\n" -"\n" -" Override a default list of supported PAC types for the service:\n" -" ipa service-mod HTTP/web.example.com --pac-type=MS-PAC\n" -"\n" -" A typical use case where overriding the PAC type is needed is NFS.\n" -" Currently the related code in the Linux kernel can only handle Kerberos\n" -" tickets up to a maximal size. Since the PAC data can become quite large " -"it\n" -" is recommended to set --pac-type=NONE for NFS services.\n" -"\n" -" Delete an IPA service:\n" -" ipa service-del HTTP/web.example.com\n" -"\n" -" Find all IPA services associated with a host:\n" -" ipa service-find web.example.com\n" -"\n" -" Find all HTTP services:\n" -" ipa service-find HTTP\n" -"\n" -" Disable the service Kerberos key and SSL certificate:\n" -" ipa service-disable HTTP/web.example.com\n" -"\n" -" Request a certificate for an IPA service:\n" -" ipa cert-request --principal=HTTP/web.example.com example.csr\n" -msgstr "" - -#: ipaserver/plugins/service.py:113 -msgid "" -"\n" -" Allow user to create a keytab:\n" -" ipa service-allow-create-keytab HTTP/web.example.com --users=tuser1\n" -msgstr "" - -#: ipaserver/plugins/service.py:116 -msgid "" -"\n" -" Generate and retrieve a keytab for an IPA service:\n" -" ipa-getkeytab -s ipa.example.com -p HTTP/web.example.com -k /etc/httpd/" -"httpd.keytab\n" -"\n" -msgstr "" - -#: ipaserver/plugins/service.py:168 ipaclient/remote_plugins/2_114/host.py:176 -msgid "Requires pre-authentication" -msgstr "" - -#: ipaserver/plugins/service.py:169 ipaclient/remote_plugins/2_114/host.py:177 -msgid "Pre-authentication is required for the service" -msgstr "" - -#: ipaserver/plugins/service.py:174 ipaclient/remote_plugins/2_114/host.py:182 -msgid "Trusted for delegation" -msgstr "" - -#: ipaserver/plugins/service.py:175 ipaclient/remote_plugins/2_114/host.py:183 -msgid "Client credentials may be delegated to the service" -msgstr "" - -#: ipaserver/plugins/service.py:180 -msgid "Trusted to authenticate as user" -msgstr "" - -#: ipaserver/plugins/service.py:181 -msgid "The service is allowed to authenticate on behalf of a client" -msgstr "" - -#: ipaserver/plugins/service.py:215 -msgid "Malformed principal" -msgstr "" - -#: ipaserver/plugins/service.py:292 -msgid "This principal is required by the IPA master" -msgstr "" - -#: ipaserver/plugins/service.py:365 -msgid "service" -msgstr "" - -#: ipaserver/plugins/service.py:366 -msgid "services" -msgstr "" - -#: ipaserver/plugins/service.py:472 -msgid "Service principal" -msgstr "" - -#: ipaserver/plugins/service.py:482 -msgid "Service principal alias" -msgstr "" - -#: ipaserver/plugins/service.py:490 -msgid "Base-64 encoded service certificate" -msgstr "" - -#: ipaserver/plugins/service.py:531 -msgid "PAC type" -msgstr "" - -#: ipaserver/plugins/service.py:532 -msgid "" -"Override default list of supported PAC types. Use 'NONE' to disable PAC " -"support for this service, e.g. this might be necessary for NFS services." -msgstr "" - -#: ipaserver/plugins/service.py:566 -msgid "NONE value cannot be combined with other PAC types" -msgstr "" - -#: ipaserver/plugins/service.py:618 -msgid "Add a new IPA service." -msgstr "" - -#: ipaserver/plugins/service.py:620 ipaserver/plugins/service.py:688 -#, python-format -msgid "Added service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:626 -msgid "force principal name even if host not in DNS" -msgstr "" - -#: ipaserver/plugins/service.py:629 -msgid "Skip host check" -msgstr "" - -#: ipaserver/plugins/service.py:630 -msgid "" -"force service to be created even when host object does not exist to manage it" -msgstr "" - -#: ipaserver/plugins/service.py:648 ipaserver/plugins/service.py:756 -#, python-format -msgid "The host '%s' does not exist to add a service to." -msgstr "" - -#: ipaserver/plugins/service.py:686 -msgid "Add a new SMB service." -msgstr "" - -#: ipaserver/plugins/service.py:702 -msgid "SMB service NetBIOS name" -msgstr "" - -#: ipaserver/plugins/service.py:814 -msgid "Delete an IPA service." -msgstr "" - -#: ipaserver/plugins/service.py:816 -#, python-format -msgid "Deleted service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:834 -msgid "Modify an existing IPA service." -msgstr "" - -#: ipaserver/plugins/service.py:836 -#, python-format -msgid "Modified service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:883 -msgid "Search for IPA services." -msgstr "" - -#: ipaserver/plugins/service.py:886 -#, python-format -msgid "%(count)d service matched" -msgid_plural "%(count)d services matched" +msgid "%(count)d HBAC service group matched" +msgid_plural "%(count)d HBAC service groups matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/service.py:950 -msgid "Display information about an IPA service." +#: ipaserver/plugins/hbacsvcgroup.py:163 +msgid "Display information about an HBAC service group." msgstr "" -#: ipaserver/plugins/service.py:987 -msgid "Add hosts that can manage this service." +#: ipaserver/plugins/hbacsvcgroup.py:169 +msgid "Add members to an HBAC service group." msgstr "" -#: ipaserver/plugins/service.py:996 -msgid "Remove hosts that can manage this service." +#: ipaserver/plugins/hbacsvcgroup.py:175 +msgid "Remove members from an HBAC service group." msgstr "" -#: ipaserver/plugins/service.py:1004 -msgid "" -"Allow users, groups, hosts or host groups to retrieve a keytab of this " -"service." -msgstr "" - -#: ipaserver/plugins/service.py:1024 -msgid "" -"Disallow users, groups, hosts or host groups to retrieve a keytab of this " -"service." -msgstr "" - -#: ipaserver/plugins/service.py:1043 -msgid "" -"Allow users, groups, hosts or host groups to create a keytab of this service." -msgstr "" - -#: ipaserver/plugins/service.py:1063 -msgid "" -"Disallow users, groups, hosts or host groups to create a keytab of this " -"service." -msgstr "" - -#: ipaserver/plugins/service.py:1082 -msgid "Disable the Kerberos key and SSL certificate of a service." -msgstr "" - -#: ipaserver/plugins/service.py:1085 -#, python-format -msgid "Disabled service \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:1125 -msgid "Add new certificates to a service" -msgstr "" - -#: ipaserver/plugins/service.py:1126 -#, python-format -msgid "Added certificates to service principal \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:1132 -msgid "Remove certificates from a service" -msgstr "" - -#: ipaserver/plugins/service.py:1133 -#, python-format -msgid "Removed certificates from service principal \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:1149 -msgid "Add new principal alias to a service" -msgstr "" - -#: ipaserver/plugins/service.py:1150 -#, python-format -msgid "Added new aliases to the service principal \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/service.py:1161 -msgid "Remove principal alias from a service" -msgstr "" - -#: ipaserver/plugins/service.py:1162 -#, python-format -msgid "Removed aliases to the service principal \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/serverroles.py:84 -#, python-brace-format -msgid "{role}: role not found" -msgstr "" - -#: ipaserver/plugins/serverroles.py:178 -#, python-brace-format -msgid "{attr}: no such attribute" -msgstr "" - -#: ipaserver/plugins/otp.py:7 -msgid "One time password commands" -msgstr "" - -#: ipaserver/plugins/whoami.py:15 +#: ipaserver/plugins/misc.py:24 ipaclient/remote_plugins/2_114/misc.py:19 msgid "" "\n" -"Return information about currently authenticated identity\n" -"\n" -"Who am I command returns information on how to get\n" -"more details about the identity authenticated for this\n" -"request. The information includes:\n" -"\n" -" * type of object\n" -" * command to retrieve details of the object\n" -" * arguments and options to pass to the command\n" -"\n" -"The information is returned as a dictionary. Examples below use\n" -"'key: value' output for illustrative purposes.\n" -"\n" -"EXAMPLES:\n" -"\n" -" Look up as IPA user:\n" -" kinit admin\n" -" ipa console\n" -" >> api.Command.whoami()\n" -" ------------------------------------------\n" -" object: user\n" -" command: user_show/1\n" -" arguments: admin\n" -" ------------------------------------------\n" -"\n" -" Look up as a user from a trusted domain:\n" -" kinit user@AD.DOMAIN\n" -" ipa console\n" -" >> api.Command.whoami()\n" -" ------------------------------------------\n" -" object: idoverrideuser\n" -" command: idoverrideuser_show/1\n" -" arguments: ('default trust view', 'user@ad.domain')\n" -" ------------------------------------------\n" -"\n" -" Look up as a host:\n" -" kinit -k\n" -" ipa console\n" -" >> api.Command.whoami()\n" -" ------------------------------------------\n" -" object: host\n" -" command: host_show/1\n" -" arguments: ipa.example.com\n" -" ------------------------------------------\n" -"\n" -" Look up as a Kerberos service:\n" -" kinit -k -t /path/to/keytab HTTP/ipa.example.com\n" -" ipa console\n" -" >> api.Command.whoami()\n" -" ------------------------------------------\n" -" object: service\n" -" command: service_show/1\n" -" arguments: HTTP/ipa.example.com\n" -" ------------------------------------------\n" -msgstr "" - -#: ipaserver/plugins/whoami.py:77 -msgid "Describe currently authenticated identity." -msgstr "" - -#: ipaserver/plugins/whoami.py:82 ipaserver/plugins/whoami.py:88 -msgid "Object class name" -msgstr "" - -#: ipaserver/plugins/whoami.py:83 ipaserver/plugins/whoami.py:89 -msgid "Function to get details" -msgstr "" - -#: ipaserver/plugins/whoami.py:84 ipaserver/plugins/whoami.py:91 -msgid "Arguments to details function" -msgstr "" - -#: ipaserver/plugins/whoami.py:111 -msgid "Cannot query Directory Manager with API" -msgstr "" - -#: ipaserver/plugins/trust.py:83 -msgid "" -"\n" -"Cross-realm trusts\n" -"\n" -"Manage trust relationship between IPA and Active Directory domains.\n" -"\n" -"In order to allow users from a remote domain to access resources in IPA " -"domain,\n" -"trust relationship needs to be established. Currently IPA supports only " -"trusts\n" -"between IPA and Active Directory domains under control of Windows Server " -"2008\n" -"or later, with functional level 2008 or later.\n" -"\n" -"Please note that DNS on both IPA and Active Directory domain sides should " -"be\n" -"configured properly to discover each other. Trust relationship relies on\n" -"ability to discover special resources in the other domain via DNS records.\n" -"\n" -"Examples:\n" -"\n" -"1. Establish cross-realm trust with Active Directory using AD administrator\n" -" credentials:\n" -"\n" -" ipa trust-add --type=ad --admin --password\n" -"\n" -"2. List all existing trust relationships:\n" -"\n" -" ipa trust-find\n" -"\n" -"3. Show details of the specific trust relationship:\n" -"\n" -" ipa trust-show \n" -"\n" -"4. Delete existing trust relationship:\n" -"\n" -" ipa trust-del \n" -"\n" -"Once trust relationship is established, remote users will need to be mapped\n" -"to local POSIX groups in order to actually use IPA resources. The mapping\n" -"should be done via use of external membership of non-POSIX group and then\n" -"this group should be included into one of local POSIX groups.\n" -"\n" -"Example:\n" -"\n" -"1. Create group for the trusted domain admins' mapping and their local " -"POSIX\n" -"group:\n" -"\n" -" ipa group-add --desc=' admins external map' " -"ad_admins_external --external\n" -" ipa group-add --desc=' admins' ad_admins\n" -"\n" -"2. Add security identifier of Domain Admins of the to the\n" -" ad_admins_external group:\n" -"\n" -" ipa group-add-member ad_admins_external --external 'AD\\Domain Admins'\n" -"\n" -"3. Allow members of ad_admins_external group to be associated with\n" -" ad_admins POSIX group:\n" -"\n" -" ipa group-add-member ad_admins --groups ad_admins_external\n" -"\n" -"4. List members of external members of ad_admins_external group to see\n" -" their SIDs:\n" -"\n" -" ipa group-show ad_admins_external\n" -"\n" -"\n" -"GLOBAL TRUST CONFIGURATION\n" -"\n" -"When IPA AD trust subpackage is installed and ipa-adtrust-install is run, a\n" -"local domain configuration (SID, GUID, NetBIOS name) is generated. These\n" -"identifiers are then used when communicating with a trusted domain of the\n" -"particular type.\n" -"\n" -"1. Show global trust configuration for Active Directory type of trusts:\n" -"\n" -" ipa trustconfig-show --type ad\n" -"\n" -"2. Modify global configuration for all trusts of Active Directory type and " -"set\n" -" a different fallback primary group (fallback primary group GID is used as " -"a\n" -" primary user GID if user authenticating to IPA domain does not have any\n" -" other primary GID already set):\n" -"\n" -" ipa trustconfig-mod --type ad --fallback-primary-group \"another AD group" -"\"\n" -"\n" -"3. Change primary fallback group back to default hidden group (any group " -"with\n" -" posixGroup object class is allowed):\n" -"\n" -" ipa trustconfig-mod --type ad --fallback-primary-group \"Default SMB Group" -"\"\n" -msgstr "" - -#: ipaserver/plugins/trust.py:178 ipaclient/remote_plugins/2_114/trust.py:275 -msgid "Trust type (ad for Active Directory, default)" -msgstr "" - -#: ipaserver/plugins/trust.py:226 -#, python-format -msgid "" -" Alternatively, following servers are capable of running this command: " -"%(masters)s" -msgstr "" - -#: ipaserver/plugins/trust.py:239 ipaserver/plugins/trust.py:871 -#: ipaserver/plugins/trust.py:887 ipaserver/plugins/trust.py:908 -#: ipaserver/plugins/trust.py:918 ipaserver/plugins/trust.py:1071 -#: ipaserver/plugins/trust.py:1106 -msgid "AD Trust setup" -msgstr "" - -#: ipaserver/plugins/trust.py:250 -msgid "" -"Cannot perform the selected command without Samba 4 support installed. Make " -"sure you have installed server-trust-ad sub-package of IPA." -msgstr "" - -#: ipaserver/plugins/trust.py:260 -msgid "" -"Cannot perform the selected command without Samba 4 instance configured on " -"this machine. Make sure you have run ipa-adtrust-install on this server." -msgstr "" - -#: ipaserver/plugins/trust.py:345 ipaserver/plugins/hbactest.py:408 -msgid "" -"Cannot search in trusted domains without own domain configured. Make sure " -"you have run ipa-adtrust-install on the IPA server first" -msgstr "" - -#: ipaserver/plugins/trust.py:474 -msgid "" -"Fetching domains from trusted forest failed. See details in the error_log" -msgstr "" - -#: ipaserver/plugins/trust.py:487 -msgid "trust" -msgstr "" - -#: ipaserver/plugins/trust.py:488 -msgid "trusts" -msgstr "" - -#: ipaserver/plugins/trust.py:531 -msgid "Trust" -msgstr "" - -#: ipaserver/plugins/trust.py:536 client/ipa-rmkeytab.c:176 -msgid "Realm name" -msgstr "" - -#: ipaserver/plugins/trust.py:549 ipaclient/remote_plugins/2_114/trust.py:125 -msgid "SID blacklist incoming" -msgstr "" - -#: ipaserver/plugins/trust.py:553 ipaclient/remote_plugins/2_114/trust.py:131 -msgid "SID blacklist outgoing" -msgstr "" - -#: ipaserver/plugins/trust.py:569 -msgid "UPN suffixes" -msgstr "" - -#: ipaserver/plugins/trust.py:586 -#, python-brace-format -msgid "invalid SID: {SID}" -msgstr "" - -#: ipaserver/plugins/trust.py:654 -msgid "" -"\n" -"Add new trust to use.\n" -"\n" -"This command establishes trust relationship to another domain\n" -"which becomes 'trusted'. As result, users of the trusted domain\n" -"may access resources of this domain.\n" -"\n" -"Only trusts to Active Directory domains are supported right now.\n" -"\n" -"The command can be safely run multiple times against the same domain,\n" -"this will cause change to trust relationship credentials on both\n" -"sides.\n" -"\n" -"Note that if the command was previously run with a specific range type,\n" -"or with automatic detection of the range type, and you want to configure a\n" -"different range type, you may need to delete first the ID range using\n" -"ipa idrange-del before retrying the command with the desired range type.\n" -" " -msgstr "" - -#: ipaserver/plugins/trust.py:683 ipaserver/plugins/trust.py:1795 -msgid "Active Directory domain administrator" -msgstr "" - -#: ipaserver/plugins/trust.py:687 ipaserver/plugins/trust.py:1799 -msgid "Active Directory domain administrator's password" -msgstr "" - -#: ipaserver/plugins/trust.py:692 ipaserver/plugins/trust.py:1804 -msgid "Domain controller for the Active Directory domain (optional)" -msgstr "" - -#: ipaserver/plugins/trust.py:697 ipaclient/remote_plugins/2_114/trust.py:300 -msgid "Shared secret for the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:702 ipaclient/remote_plugins/2_114/trust.py:305 -msgid "First Posix ID of the range reserved for the trusted domain" -msgstr "" - -#: ipaserver/plugins/trust.py:707 ipaclient/remote_plugins/2_114/trust.py:310 -msgid "Size of the ID range reserved for the trusted domain" -msgstr "" - -#: ipaserver/plugins/trust.py:712 -msgid "Type of trusted domain ID range, one of allowed values" -msgstr "" - -#: ipaserver/plugins/trust.py:717 ipaserver/dcerpc_common.py:22 -msgid "Two-way trust" -msgstr "" - -#: ipaserver/plugins/trust.py:719 ipaclient/remote_plugins/2_156/trust.py:324 -msgid "" -"Establish bi-directional trust. By default trust is inbound one-way only." -msgstr "" - -#: ipaserver/plugins/trust.py:724 -msgid "External trust" -msgstr "" - -#: ipaserver/plugins/trust.py:726 -msgid "" -"Establish external trust to a domain in another forest. The trust is not " -"transitive beyond the domain." -msgstr "" - -#: ipaserver/plugins/trust.py:732 -#, python-format -msgid "Added Active Directory trust for realm \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:733 -#, python-format -msgid "Re-established trust to domain \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:829 -msgid "missing base_id" -msgstr "" - -#: ipaserver/plugins/trust.py:831 -msgid "pysss_murmur is not available on the server and no base-id is given." -msgstr "" - -#: ipaserver/plugins/trust.py:841 -msgid "trust type" -msgstr "" - -#: ipaserver/plugins/trust.py:842 -msgid "only \"ad\" is supported" -msgstr "" - -#: ipaserver/plugins/trust.py:849 -msgid "" -"Cannot establish a trust to AD deployed in the same domain as IPA. Such " -"setup is not supported." -msgstr "" - -#: ipaserver/plugins/trust.py:862 -msgid "Realm-domain mismatch" -msgstr "" - -#: ipaserver/plugins/trust.py:863 -msgid "" -"To establish trust with Active Directory, the domain name and the realm name " -"of the IPA server must match" -msgstr "" - -#: ipaserver/plugins/trust.py:889 -#, python-format -msgid "" -"Trusted domain %(domain)s is included among IPA realm domains. It needs to " -"be removed prior to establishing the trust. See the \"ipa realmdomains-mod --" -"del-domain\" command." -msgstr "" - -#: ipaserver/plugins/trust.py:910 -msgid "Trusted domain and administrator account use different realms" -msgstr "" - -#: ipaserver/plugins/trust.py:919 -msgid "Realm administrator password should be specified" -msgstr "" - -#: ipaserver/plugins/trust.py:940 -msgid "id range type" -msgstr "" - -#: ipaserver/plugins/trust.py:942 -msgid "" -"Only the ipa-ad-trust and ipa-ad-trust-posix are allowed values for --range-" -"type when adding an AD trust." -msgstr "" - -#: ipaserver/plugins/trust.py:952 -msgid "id range" -msgstr "" - -#: ipaserver/plugins/trust.py:954 -msgid "" -"An id range already exists for this trust. You should either delete the old " -"range, or exclude --base-id/--range-size options from the command." -msgstr "" - -#: ipaserver/plugins/trust.py:976 -msgid "range exists" -msgstr "" - -#: ipaserver/plugins/trust.py:978 -msgid "" -"ID range with the same name but different domain SID already exists. The ID " -"range for the new trusted domain must be created manually." -msgstr "" - -#: ipaserver/plugins/trust.py:986 -msgid "range type change" -msgstr "" - -#: ipaserver/plugins/trust.py:987 -msgid "" -"ID range for the trusted domain already exists, but it has a different type. " -"Please remove the old range manually, or do not enforce type via --range-" -"type option." -msgstr "" - -#: ipaserver/plugins/trust.py:1025 -#, python-brace-format -msgid "Unable to resolve domain controller for {domain} domain. " -msgstr "" - -#: ipaserver/plugins/trust.py:1039 -msgid "" -"Forward policy is defined for it in IPA DNS, perhaps forwarder points to " -"incorrect host?" -msgstr "" - -#: ipaserver/plugins/trust.py:1045 -#, python-brace-format -msgid "" -"IPA manages DNS, please verify your DNS configuration and make sure that " -"service records of the '{domain}' domain can be resolved. Examples how to " -"configure DNS with CLI commands or the Web UI can be found in the " -"documentation. " -msgstr "" - -#: ipaserver/plugins/trust.py:1057 -#, python-brace-format -msgid "" -"Since IPA does not manage DNS records, ensure DNS is configured to resolve " -"'{domain}' domain from IPA hosts and back." -msgstr "" - -#: ipaserver/plugins/trust.py:1072 -msgid "Unable to verify write permissions to the AD" -msgstr "" - -#: ipaserver/plugins/trust.py:1107 -msgid "Not enough arguments specified to perform trust setup" -msgstr "" - -#: ipaserver/plugins/trust.py:1113 ipaclient/remote_plugins/2_114/trust.py:352 -msgid "Delete a trust." -msgstr "" - -#: ipaserver/plugins/trust.py:1115 -#, python-format -msgid "Deleted trust \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:1120 -msgid "" -"\n" -" Modify a trust (for future use).\n" -"\n" -" Currently only the default option to modify the LDAP attributes is\n" -" available. More specific options will be added in coming releases.\n" -" " -msgstr "" - -#: ipaserver/plugins/trust.py:1127 -#, python-format -msgid "Modified trust \"%(value)s\" (change will be effective in 60 seconds)" -msgstr "" - -#: ipaserver/plugins/trust.py:1140 ipaclient/remote_plugins/2_114/trust.py:445 -msgid "Search for trusts." -msgstr "" - -#: ipaserver/plugins/trust.py:1145 -#, python-format -msgid "%(count)d trust matched" -msgid_plural "%(count)d trusts matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/trust.py:1183 ipaclient/remote_plugins/2_114/trust.py:670 -msgid "Display information about a trust." -msgstr "" - -#: ipaserver/plugins/trust.py:1234 -msgid "trust configuration" -msgstr "" - -#: ipaserver/plugins/trust.py:1240 ipaserver/plugins/trust.py:1241 -msgid "Global Trust Configuration" -msgstr "" - -#: ipaserver/plugins/trust.py:1249 ipaclient/remote_plugins/2_114/trust.py:145 -msgid "Security Identifier" -msgstr "" - -#: ipaserver/plugins/trust.py:1253 ipaclient/remote_plugins/2_114/trust.py:149 -msgid "NetBIOS name" -msgstr "" - -#: ipaserver/plugins/trust.py:1257 ipaclient/remote_plugins/2_114/trust.py:153 -msgid "Domain GUID" -msgstr "" - -#: ipaserver/plugins/trust.py:1262 ipaclient/remote_plugins/2_114/trust.py:157 -msgid "Fallback primary group" -msgstr "" - -#: ipaserver/plugins/trust.py:1266 -msgid "IPA AD trust agents" -msgstr "" - -#: ipaserver/plugins/trust.py:1267 -msgid "IPA servers configured as AD trust agents" -msgstr "" - -#: ipaserver/plugins/trust.py:1272 -msgid "IPA AD trust controllers" -msgstr "" - -#: ipaserver/plugins/trust.py:1273 -msgid "IPA servers configured as AD trust controllers" -msgstr "" - -#: ipaserver/plugins/trust.py:1287 -msgid "unsupported trust type" -msgstr "" - -#: ipaserver/plugins/trust.py:1351 ipaclient/remote_plugins/2_114/trust.py:720 -msgid "Modify global trust configuration." -msgstr "" - -#: ipaserver/plugins/trust.py:1354 -#, python-format -msgid "Modified \"%(value)s\" trust configuration" -msgstr "" - -#: ipaserver/plugins/trust.py:1375 ipaclient/remote_plugins/2_114/trust.py:798 -msgid "Show global trust configuration." -msgstr "" - -#: ipaserver/plugins/trust.py:1408 ipaclient/remote_plugins/2_114/trust.py:636 -msgid "Resolve security identifiers of users and groups in trusted domains" -msgstr "" - -#: ipaserver/plugins/trust.py:1413 ipaclient/remote_plugins/2_114/trust.py:644 -msgid "Security Identifiers (SIDs)" -msgstr "" - -#: ipaserver/plugins/trust.py:1419 -msgid "SID" -msgstr "" - -#: ipaserver/plugins/trust.py:1451 ipaclient/remote_plugins/2_114/trust.py:190 -msgid "Determine whether ipa-adtrust-install has been run on this system" -msgstr "" - -#: ipaserver/plugins/trust.py:1477 ipaclient/remote_plugins/2_114/trust.py:205 -msgid "" -"Determine whether Schema Compatibility plugin is configured to serve trusted " -"domain users and groups" -msgstr "" - -#: ipaserver/plugins/trust.py:1529 ipaclient/remote_plugins/2_114/trust.py:220 -msgid "Determine whether ipa-adtrust-install has been run with sidgen task" -msgstr "" - -#: ipaserver/plugins/trust.py:1545 -msgid "sidgen_was_run" -msgstr "" - -#: ipaserver/plugins/trust.py:1547 -msgid "" -"This command relies on the existence of the \"editors\" group, but this " -"group was not found." -msgstr "" - -#: ipaserver/plugins/trust.py:1566 -msgid "trust domain" -msgstr "" - -#: ipaserver/plugins/trust.py:1567 -msgid "trust domains" -msgstr "" - -#: ipaserver/plugins/trust.py:1575 -msgid "Trusted domains" -msgstr "" - -#: ipaserver/plugins/trust.py:1576 -msgid "Trusted domain" -msgstr "" - -#: ipaserver/plugins/trust.py:1590 -msgid "Domain enabled" -msgstr "" - -#: ipaserver/plugins/trust.py:1611 ipaclient/remote_plugins/2_114/trust.py:1053 -msgid "Search domains of the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1637 ipaclient/remote_plugins/2_114/trust.py:1151 -msgid "Modify trustdomain of the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1645 ipaclient/remote_plugins/2_114/trust.py:849 -msgid "Allow access from the trusted domain" -msgstr "" - -#: ipaserver/plugins/trust.py:1659 ipaclient/remote_plugins/2_114/trust.py:939 -msgid "Remove information about the domain associated with the trust." -msgstr "" - -#: ipaserver/plugins/trust.py:1662 -#, python-format -msgid "Removed information about the trusted domain \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:1680 -msgid "" -"cannot delete root domain of the trust, use trust-del to delete the trust " -"itself" -msgstr "" - -#: ipaserver/plugins/trust.py:1789 ipaclient/remote_plugins/2_114/trust.py:389 -msgid "Refresh list of the domains associated with the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1828 -msgid "" -"List of trust domains successfully refreshed. Use trustdomain-find command " -"to list them." -msgstr "" - -#: ipaserver/plugins/trust.py:1836 -msgid "Configure this server as a trust agent." -msgstr "" - -#: ipaserver/plugins/trust.py:1852 -msgid "Enable support for trusted domains for old clients" -msgstr "" - -#: ipaserver/plugins/trust.py:1868 -msgid "not allowed to remotely add agent" -msgstr "" - -#: ipaserver/plugins/trust.py:1901 ipaclient/remote_plugins/2_114/trust.py:1017 -msgid "Allow use of IPA resources by the domain of the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1904 -#, python-format -msgid "Enabled trust domain \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:1913 -msgid "Root domain of the trust is always enabled for the existing trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1943 ipaclient/remote_plugins/2_114/trust.py:981 -msgid "Disable use of IPA resources by the domain of the trust" -msgstr "" - -#: ipaserver/plugins/trust.py:1946 -#, python-format -msgid "Disabled trust domain \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/trust.py:1955 -msgid "" -"cannot disable root domain of the trust, use trust-del to delete the trust " -"itself" -msgstr "" - -#: ipaserver/plugins/sudorule.py:42 -msgid "" -"\n" -"Sudo Rules\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:44 -msgid "" -"\n" -"Sudo (su \"do\") allows a system administrator to delegate authority to\n" -"give certain users (or groups of users) the ability to run some (or all)\n" -"commands as root or another user while providing an audit trail of the\n" -"commands and their arguments.\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:49 -msgid "" -"\n" -"FreeIPA provides a means to configure the various aspects of Sudo:\n" -" Users: The user(s)/group(s) allowed to invoke Sudo.\n" -" Hosts: The host(s)/hostgroup(s) which the user is allowed to to invoke " -"Sudo.\n" -" Allow Command: The specific command(s) permitted to be run via Sudo.\n" -" Deny Command: The specific command(s) prohibited to be run via Sudo.\n" -" RunAsUser: The user(s) or group(s) of users whose rights Sudo will be " -"invoked with.\n" -" RunAsGroup: The group(s) whose gid rights Sudo will be invoked with.\n" -" Options: The various Sudoers Options that can modify Sudo's behavior.\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:58 -msgid "" -"\n" -"An order can be added to a sudorule to control the order in which they\n" -"are evaluated (if the client supports it). This order is an integer and\n" -"must be unique.\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:62 -msgid "" -"\n" -"FreeIPA provides a designated binddn to use with Sudo located at:\n" -"uid=sudo,cn=sysaccounts,cn=etc,dc=example,dc=com\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:65 -msgid "" -"\n" -"To enable the binddn run the following command to set the password:\n" -"LDAPTLS_CACERT=/etc/ipa/ca.crt /usr/bin/ldappasswd -S -W -h ipa.example.com -" -"ZZ -D \"cn=Directory Manager\" uid=sudo,cn=sysaccounts,cn=etc,dc=example," -"dc=com\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:72 -msgid "" -"\n" -" Create a new rule:\n" -" ipa sudorule-add readfiles\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:75 -msgid "" -"\n" -" Add sudo command object and add it as allowed command in the rule:\n" -" ipa sudocmd-add /usr/bin/less\n" -" ipa sudorule-add-allow-command readfiles --sudocmds /usr/bin/less\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:79 -msgid "" -"\n" -" Add a host to the rule:\n" -" ipa sudorule-add-host readfiles --hosts server.example.com\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:82 -msgid "" -"\n" -" Add a user to the rule:\n" -" ipa sudorule-add-user readfiles --users jsmith\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:85 -msgid "" -"\n" -" Add a special Sudo rule for default Sudo server configuration:\n" -" ipa sudorule-add defaults\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:88 -msgid "" -"\n" -" Set a default Sudo option:\n" -" ipa sudorule-add-option defaults --sudooption '!authenticate'\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:91 -msgid "" -"\n" -" Set SELinux type and role transitions on a rule:\n" -" ipa sudorule-add-option sysadmin_sudo --sudooption type=unconfined_t\n" -" ipa sudorule-add-option sysadmin_sudo --sudooption role=unconfined_r\n" -msgstr "" - -#: ipaserver/plugins/sudorule.py:105 -msgid "this option has been deprecated." -msgstr "" - -#: ipaserver/plugins/sudorule.py:109 -msgid "host masks of allowed hosts" -msgstr "" - -#: ipaserver/plugins/sudorule.py:132 -msgid "sudo rule" -msgstr "" - -#: ipaserver/plugins/sudorule.py:133 -msgid "sudo rules" -msgstr "" - -#: ipaserver/plugins/sudorule.py:221 -msgid "Sudo Rules" -msgstr "" - -#: ipaserver/plugins/sudorule.py:222 -msgid "Sudo Rule" -msgstr "" - -#: ipaserver/plugins/sudorule.py:252 -msgid "Command category" -msgstr "" - -#: ipaserver/plugins/sudorule.py:253 -msgid "Command category the rule applies to" -msgstr "" - -#: ipaserver/plugins/sudorule.py:258 -msgid "RunAs User category" -msgstr "" - -#: ipaserver/plugins/sudorule.py:259 -msgid "RunAs User category the rule applies to" -msgstr "" - -#: ipaserver/plugins/sudorule.py:264 -msgid "RunAs Group category" -msgstr "" - -#: ipaserver/plugins/sudorule.py:265 -msgid "RunAs Group category the rule applies to" -msgstr "" - -#: ipaserver/plugins/sudorule.py:270 -msgid "Sudo order" -msgstr "" - -#: ipaserver/plugins/sudorule.py:271 -msgid "integer to order the Sudo rules" -msgstr "" - -#: ipaserver/plugins/sudorule.py:285 -msgid "External User" -msgstr "" - -#: ipaserver/plugins/sudorule.py:286 -msgid "External User the rule applies to (sudorule-find only)" -msgstr "" - -#: ipaserver/plugins/sudorule.py:298 -msgid "Host Masks" -msgstr "" - -#: ipaserver/plugins/sudorule.py:304 -msgid "Sudo Allow Commands" -msgstr "" - -#: ipaserver/plugins/sudorule.py:308 -msgid "Sudo Deny Commands" -msgstr "" - -#: ipaserver/plugins/sudorule.py:312 -msgid "Sudo Allow Command Groups" -msgstr "" - -#: ipaserver/plugins/sudorule.py:316 -msgid "Sudo Deny Command Groups" -msgstr "" - -#: ipaserver/plugins/sudorule.py:320 -msgid "RunAs Users" -msgstr "" - -#: ipaserver/plugins/sudorule.py:321 -msgid "Run as a user" -msgstr "" - -#: ipaserver/plugins/sudorule.py:325 -msgid "Groups of RunAs Users" -msgstr "" - -#: ipaserver/plugins/sudorule.py:326 -msgid "Run as any user within a specified group" -msgstr "" - -#: ipaserver/plugins/sudorule.py:331 -msgid "RunAs External User" -msgstr "" - -#: ipaserver/plugins/sudorule.py:332 -msgid "External User the commands can run as (sudorule-find only)" -msgstr "" - -#: ipaserver/plugins/sudorule.py:336 -msgid "External Groups of RunAs Users" -msgstr "" - -#: ipaserver/plugins/sudorule.py:337 -msgid "External Groups of users that the command can run as" -msgstr "" - -#: ipaserver/plugins/sudorule.py:341 -msgid "RunAs Groups" -msgstr "" - -#: ipaserver/plugins/sudorule.py:342 -msgid "Run with the gid of a specified POSIX group" -msgstr "" - -#: ipaserver/plugins/sudorule.py:347 -msgid "RunAs External Group" -msgstr "" - -#: ipaserver/plugins/sudorule.py:348 -msgid "External Group the commands can run as (sudorule-find only)" -msgstr "" - -#: ipaserver/plugins/sudorule.py:351 ipaserver/plugins/sudorule.py:920 -#: ipaserver/plugins/sudorule.py:968 -msgid "Sudo Option" -msgstr "" - -#: ipaserver/plugins/sudorule.py:357 -#, python-format -msgid "order must be a unique value (%(order)d already used by %(rule)s)" -msgstr "" - -#: ipaserver/plugins/sudorule.py:379 -msgid "Create new Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:388 -#, python-format -msgid "Added Sudo Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/sudorule.py:393 -msgid "Delete Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:395 -#, python-format -msgid "Deleted Sudo Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/sudorule.py:400 -msgid "Modify Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:402 -#, python-format -msgid "Modified Sudo Rule \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/sudorule.py:422 -#, python-format -msgid "" -"%(type)s category cannot be set to 'all' while there are allowed %(objects)s" -msgstr "" - -#: ipaserver/plugins/sudorule.py:438 -msgid "command" -msgstr "" - -#: ipaserver/plugins/sudorule.py:438 -msgid "commands" -msgstr "" - -#: ipaserver/plugins/sudorule.py:444 -msgid "runAs user" -msgstr "" - -#: ipaserver/plugins/sudorule.py:444 -msgid "runAs users" -msgstr "" - -#: ipaserver/plugins/sudorule.py:449 -msgid "group runAs" -msgstr "" - -#: ipaserver/plugins/sudorule.py:449 -msgid "runAs groups" -msgstr "" - -#: ipaserver/plugins/sudorule.py:467 -msgid "Search for Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:470 -#, python-format -msgid "%(count)d Sudo Rule matched" -msgid_plural "%(count)d Sudo Rules matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/sudorule.py:476 -msgid "Display Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:481 -msgid "Enable a Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:504 -msgid "Disable a Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:527 ipaserver/plugins/sudorule.py:558 -msgid "Add commands and sudo command groups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:542 -msgid "commands cannot be added when command category='all'" -msgstr "" - -#: ipaserver/plugins/sudorule.py:550 ipaserver/plugins/sudorule.py:570 -msgid "Remove commands and sudo command groups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:578 -msgid "Add users and groups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:610 -msgid "Remove users and groups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:628 -msgid "Add hosts and hostgroups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:686 -msgid "Remove hosts and hostgroups affected by Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:732 -msgid "Add users and groups for Sudo to execute as." -msgstr "" - -#: ipaserver/plugins/sudorule.py:755 ipaserver/plugins/sudorule.py:868 -msgid "users cannot be added when runAs user or runAs group category='all'" -msgstr "" - -#: ipaserver/plugins/sudorule.py:762 -#, python-format -msgid "RunAsUser does not accept '%(name)s' as a user name" -msgstr "" - -#: ipaserver/plugins/sudorule.py:770 -#, python-format -msgid "RunAsUser does not accept '%(name)s' as a group name" -msgstr "" - -#: ipaserver/plugins/sudorule.py:809 -msgid "Remove users and groups for Sudo to execute as." -msgstr "" - -#: ipaserver/plugins/sudorule.py:847 -msgid "Add group for Sudo to execute as." -msgstr "" - -#: ipaserver/plugins/sudorule.py:875 -#, python-format -msgid "RunAsGroup does not accept '%(name)s' as a group name" -msgstr "" - -#: ipaserver/plugins/sudorule.py:895 -msgid "Remove group for Sudo to execute as." -msgstr "" - -#: ipaserver/plugins/sudorule.py:914 -msgid "Add an option to the Sudo Rule." -msgstr "" - -#: ipaserver/plugins/sudorule.py:962 -msgid "Remove an option from Sudo Rule." +"Misc plug-ins\n" msgstr "" #: ipaserver/plugins/vault.py:54 @@ -17925,6 +12707,10 @@ msgstr "" msgid "Transport Certificate" msgstr "" +#: ipaserver/plugins/vault.py:978 ipaserver/plugins/config.py:302 +msgid "IPA KRA servers" +msgstr "" + #: ipaserver/plugins/vault.py:979 msgid "IPA servers configured as key recovery agents" msgstr "" @@ -17991,84 +12777,1944 @@ msgstr "" msgid "Checks if any of the servers has the KRA service enabled" msgstr "" -#: ipaserver/plugins/hbac.py:7 -msgid "Host-based access control commands" -msgstr "" - -#: ipaserver/plugins/otpconfig.py:24 +#: ipaserver/plugins/stageuser.py:65 msgid "" "\n" -"OTP configuration\n" +"Stageusers\n" +"\n" +"Manage stage user entries.\n" +"\n" +"Stage user entries are directly under the container: \"cn=stage users,\n" +"cn=accounts, cn=provisioning, SUFFIX\".\n" +"Users can not authenticate with those entries (even if the entries\n" +"contain credentials). Those entries are only candidate to become Active " +"entries.\n" +"\n" +"Active user entries are Posix users directly under the container: " +"\"cn=accounts, SUFFIX\".\n" +"Users can authenticate with Active entries, at the condition they have\n" +"credentials.\n" +"\n" +"Deleted user entries are Posix users directly under the container: " +"\"cn=deleted users,\n" +"cn=accounts, cn=provisioning, SUFFIX\".\n" +"Users can not authenticate with those entries, even if the entries contain " +"credentials.\n" +"\n" +"The stage user container contains entries:\n" +" - created by 'stageuser-add' commands that are Posix users,\n" +" - created by external provisioning system.\n" +"\n" +"A valid stage user entry MUST have:\n" +" - entry RDN is 'uid',\n" +" - ipaUniqueID is 'autogenerate'.\n" +"\n" +"IPA supports a wide range of username formats, but you need to be aware of " +"any\n" +"restrictions that may apply to your particular environment. For example,\n" +"usernames that start with a digit or usernames that exceed a certain length\n" +"may cause problems for some UNIX systems.\n" +"Use 'ipa config-mod' to change the username format allowed by IPA tools.\n" "\n" -"Manage the default values that IPA uses for OTP tokens.\n" "\n" "EXAMPLES:\n" "\n" -" Show basic OTP configuration:\n" -" ipa otpconfig-show\n" +" Add a new stageuser:\n" +" ipa stageuser-add --first=Tim --last=User --password tuser1\n" "\n" -" Show all OTP configuration options:\n" -" ipa otpconfig-show --all\n" +" Add a stageuser from the deleted users container:\n" +" ipa stageuser-add --first=Tim --last=User --from-delete tuser1\n" "\n" -" Change maximum TOTP authentication window to 10 minutes:\n" -" ipa otpconfig-mod --totp-auth-window=600\n" +msgstr "" + +#: ipaserver/plugins/stageuser.py:128 +msgid "Stage Users" +msgstr "" + +#: ipaserver/plugins/stageuser.py:129 +msgid "Stage User" +msgstr "" + +#: ipaserver/plugins/stageuser.py:130 +msgid "stage user" +msgstr "" + +#: ipaserver/plugins/stageuser.py:131 +msgid "stage users" +msgstr "" + +#: ipaserver/plugins/stageuser.py:276 +msgid "Add a new stage user." +msgstr "" + +#: ipaserver/plugins/stageuser.py:278 +#, python-format +msgid "Added stage user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:286 +msgid "Create Stage user in from a delete user" +msgstr "" + +#: ipaserver/plugins/stageuser.py:297 +msgid "givenname is required" +msgstr "" + +#: ipaserver/plugins/stageuser.py:300 +msgid "sn is required" +msgstr "" + +#: ipaserver/plugins/stageuser.py:416 +msgid "Delete a stage user." +msgstr "" + +#: ipaserver/plugins/stageuser.py:418 +#, python-format +msgid "Deleted stage user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:422 +msgid "Modify a stage user." +msgstr "" + +#: ipaserver/plugins/stageuser.py:424 +#, python-format +msgid "Modified stage user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:444 +msgid "Search for stage users." +msgstr "" + +#: ipaserver/plugins/stageuser.py:476 +msgid "Display information about a stage user." +msgstr "" + +#: ipaserver/plugins/stageuser.py:493 +msgid "Activate a stage user." +msgstr "" + +#: ipaserver/plugins/stageuser.py:495 +#, python-format +msgid "Activate a stage user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:508 +msgid "Entry RDN is not 'uid'" +msgstr "" + +#: ipaserver/plugins/stageuser.py:514 +#, python-format +msgid "Entry has no '%(attribute)s'" +msgstr "" + +#: ipaserver/plugins/stageuser.py:690 +#, python-format +msgid "active user with name \"%(user)s\" already exists" +msgstr "" + +#: ipaserver/plugins/stageuser.py:754 +#, python-format +msgid "Stage user %s activated" +msgstr "" + +#: ipaserver/plugins/stageuser.py:761 +msgid "Add a manager to the stage user entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:766 +msgid "Remove a manager to the stage user entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:771 +msgid "Add one or more certificates to the stageuser entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:772 +#, python-format +msgid "Added certificates to stageuser \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:777 +msgid "Remove one or more certificates to the stageuser entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:778 +#, python-format +msgid "Removed certificates from stageuser \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:783 +msgid "Add new principal alias to the stageuser entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:784 +#, python-format +msgid "Added new aliases to stageuser \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:789 +msgid "Remove principal alias from the stageuser entry" +msgstr "" + +#: ipaserver/plugins/stageuser.py:790 +#, python-format +msgid "Removed aliases from stageuser \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/stageuser.py:795 +msgid "Add one or more certificate mappings to the stage user entry." +msgstr "" + +#: ipaserver/plugins/stageuser.py:801 +msgid "Remove one or more certificate mappings from the stage user entry." +msgstr "" + +#: ipaserver/plugins/sudo.py:7 +msgid "commands for controlling sudo configuration" +msgstr "" + +#: ipaserver/plugins/passwd.py:40 ipaclient/remote_plugins/2_114/passwd.py:19 +msgid "" "\n" -" Change maximum TOTP synchronization window to 12 hours:\n" -" ipa otpconfig-mod --totp-sync-window=43200\n" +"Set a user's password\n" "\n" -" Change maximum HOTP authentication window to 5:\n" -" ipa hotpconfig-mod --hotp-auth-window=5\n" +"If someone other than a user changes that user's password (e.g., Helpdesk\n" +"resets it) then the password will need to be changed the first time it\n" +"is used. This is so the end-user is the only one who knows the password.\n" "\n" -" Change maximum HOTP synchronization window to 50:\n" -" ipa hotpconfig-mod --hotp-sync-window=50\n" +"The IPA password policy controls how often a password may be changed,\n" +"what strength requirements exist, and the length of the password history.\n" +"\n" +"EXAMPLES:\n" +"\n" +" To reset your own password:\n" +" ipa passwd\n" +"\n" +" To change another user's password:\n" +" ipa passwd tuser1\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:57 -msgid "OTP configuration options" +#: ipaserver/plugins/passwd.py:81 ipaclient/remote_plugins/2_114/passwd.py:43 +msgid "Set a user's password." msgstr "" -#: ipaserver/plugins/otpconfig.py:80 ipaserver/plugins/otpconfig.py:81 -msgid "OTP Configuration" +#: ipaserver/plugins/passwd.py:108 ipaclient/remote_plugins/2_114/passwd.py:75 +msgid "One Time Password" msgstr "" -#: ipaserver/plugins/otpconfig.py:86 -msgid "TOTP authentication Window" +#: ipaserver/plugins/passwd.py:114 +#, python-format +msgid "Changed password for \"%(value)s\"" msgstr "" -#: ipaserver/plugins/otpconfig.py:87 -msgid "TOTP authentication time variance (seconds)" +#: ipaserver/plugins/passwd.py:143 ipaclient/plugins/vault.py:144 +#: ipaclient/plugins/vault.py:163 +msgid "Invalid credentials" msgstr "" -#: ipaserver/plugins/otpconfig.py:92 -msgid "TOTP Synchronization Window" +#: ipaserver/plugins/ca.py:20 +msgid "" +"\n" +"Manage Certificate Authorities\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:93 -msgid "TOTP synchronization time variance (seconds)" +#: ipaserver/plugins/ca.py:22 +msgid "" +"\n" +"Subordinate Certificate Authorities (Sub-CAs) can be added for scoped " +"issuance\n" +"of X.509 certificates.\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:98 -msgid "HOTP Authentication Window" +#: ipaserver/plugins/ca.py:25 +msgid "" +"\n" +"CAs are enabled on creation, but their use is subject to CA ACLs unless the\n" +"operator has permission to bypass CA ACLs.\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:99 -msgid "HOTP authentication skip-ahead" +#: ipaserver/plugins/ca.py:28 +msgid "" +"\n" +"All CAs except the 'IPA' CA can be disabled or re-enabled. Disabling a CA\n" +"prevents it from issuing certificates but does not affect the validity of " +"its\n" +"certificate.\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:104 -msgid "HOTP Synchronization Window" +#: ipaserver/plugins/ca.py:32 +msgid "" +"\n" +"CAs (all except the 'IPA' CA) can be deleted. Deleting a CA causes its " +"signing\n" +"certificate to be revoked and its private key deleted.\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:105 -msgid "HOTP synchronization skip-ahead" +#: ipaserver/plugins/ca.py:37 +msgid "" +"\n" +" Create new CA, subordinate to the IPA CA.\n" +"\n" +" ipa ca-add puppet --desc \"Puppet\" \\\n" +" --subject \"CN=Puppet CA,O=EXAMPLE.COM\"\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:116 -msgid "Modify OTP configuration options." +#: ipaserver/plugins/ca.py:42 +msgid "" +"\n" +" Disable a CA.\n" +"\n" +" ipa ca-disable puppet\n" msgstr "" -#: ipaserver/plugins/otpconfig.py:121 -msgid "Show the current OTP configuration." +#: ipaserver/plugins/ca.py:46 +msgid "" +"\n" +" Re-enable a CA.\n" +"\n" +" ipa ca-enable puppet\n" +msgstr "" + +#: ipaserver/plugins/ca.py:50 +msgid "" +"\n" +" Delete a CA.\n" +"\n" +" ipa ca-del puppet\n" +msgstr "" + +#: ipaserver/plugins/ca.py:66 ipaserver/plugins/ca.py:76 +msgid "Certificate Authority" +msgstr "" + +#: ipaserver/plugins/ca.py:67 ipaserver/plugins/ca.py:75 +msgid "Certificate Authorities" +msgstr "" + +#: ipaserver/plugins/ca.py:82 ipaserver/plugins/schema.py:54 +#: ipaserver/plugins/trust.py:1418 +msgid "Name" +msgstr "" + +#: ipaserver/plugins/ca.py:83 +msgid "Name for referencing the CA" +msgstr "" + +#: ipaserver/plugins/ca.py:88 +msgid "Description of the purpose of the CA" +msgstr "" + +#: ipaserver/plugins/ca.py:92 +msgid "Authority ID" +msgstr "" + +#: ipaserver/plugins/ca.py:93 +msgid "Dogtag Authority ID" +msgstr "" + +#: ipaserver/plugins/ca.py:98 ipaserver/plugins/ca.py:284 +msgid "Subject DN" +msgstr "" + +#: ipaserver/plugins/ca.py:99 +msgid "Subject Distinguished Name" +msgstr "" + +#: ipaserver/plugins/ca.py:104 ipaserver/plugins/cert.py:424 +msgid "Issuer DN" +msgstr "" + +#: ipaserver/plugins/ca.py:105 +msgid "Issuer Distinguished Name" +msgstr "" + +#: ipaserver/plugins/ca.py:111 ipaserver/plugins/cert.py:352 +msgid "Base-64 encoded certificate." +msgstr "" + +#: ipaserver/plugins/ca.py:116 ipaserver/plugins/cert.py:357 +msgid "Certificate chain" +msgstr "" + +#: ipaserver/plugins/ca.py:117 ipaserver/plugins/cert.py:358 +msgid "X.509 certificate chain" +msgstr "" + +#: ipaserver/plugins/ca.py:216 +msgid "Search for CAs." +msgstr "" + +#: ipaserver/plugins/ca.py:218 +#, python-format +msgid "%(count)d CA matched" +msgid_plural "%(count)d CAs matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/ca.py:235 ipaserver/plugins/cert.py:597 +msgid "Include certificate chain in output" +msgstr "" + +#: ipaserver/plugins/ca.py:241 +msgid "Display the properties of a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:258 +msgid "Create a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:259 +#, python-format +msgid "Created CA \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/ca.py:269 +#, python-format +msgid "Insufficient 'add' privilege for entry '%s'." +msgstr "" + +#: ipaserver/plugins/ca.py:285 +#, python-format +msgid "Unrecognized attributes: %(attrs)s" +msgstr "" + +#: ipaserver/plugins/ca.py:300 +#, python-format +msgid "Subject DN is already used by CA '%s'" +msgstr "" + +#: ipaserver/plugins/ca.py:324 +msgid "Delete a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:326 +#, python-format +msgid "Deleted CA \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/ca.py:335 +msgid "Insufficient privilege to delete a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:341 +msgid "IPA CA cannot be deleted" +msgstr "" + +#: ipaserver/plugins/ca.py:353 +msgid "Modify CA configuration." +msgstr "" + +#: ipaserver/plugins/ca.py:354 +#, python-format +msgid "Modified CA \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/ca.py:380 +msgid "Insufficient privilege to modify a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:396 +msgid "Disable a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:397 +#, python-format +msgid "Disabled CA \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/ca.py:404 +msgid "IPA CA cannot be disabled" +msgstr "" + +#: ipaserver/plugins/ca.py:414 +msgid "Enable a CA." +msgstr "" + +#: ipaserver/plugins/ca.py:415 +#, python-format +msgid "Enabled CA \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/join.py:30 ipaclient/remote_plugins/2_114/join.py:19 +msgid "" +"\n" +"Joining an IPA domain\n" +msgstr "" + +#: ipaserver/plugins/join.py:54 ipaclient/remote_plugins/2_114/join.py:28 +msgid "Join an IPA domain" +msgstr "" + +#: ipaserver/plugins/join.py:62 ipaclient/remote_plugins/2_114/join.py:34 +msgid "The hostname to register as" +msgstr "" + +#: ipaserver/plugins/join.py:71 ipaclient/remote_plugins/2_114/join.py:44 +msgid "The IPA realm" +msgstr "" + +#: ipaserver/plugins/join.py:77 ipaclient/remote_plugins/2_114/join.py:54 +msgid "Hardware platform of the host (e.g. Lenovo T61)" +msgstr "" + +#: ipaserver/plugins/join.py:81 ipaclient/remote_plugins/2_114/join.py:60 +msgid "Operating System and version of the host (e.g. Fedora 9)" +msgstr "" + +#: ipaserver/plugins/join.py:121 +#, python-format +msgid "" +"Insufficient 'write' privilege to the 'krbLastPwdChange' attribute of entry " +"'%s'." +msgstr "" + +#: ipaserver/plugins/aci.py:36 ipaclient/remote_plugins/2_114/aci.py:19 +msgid "" +"\n" +"Directory Server Access Control Instructions (ACIs)\n" +"\n" +"ACIs are used to allow or deny access to information. This module is\n" +"currently designed to allow, not deny, access.\n" +"\n" +"The aci commands are designed to grant permissions that allow updating\n" +"existing entries or adding or deleting new ones. The goal of the ACIs\n" +"that ship with IPA is to provide a set of low-level permissions that\n" +"grant access to special groups called taskgroups. These low-level\n" +"permissions can be combined into roles that grant broader access. These\n" +"roles are another type of group, roles.\n" +"\n" +"For example, if you have taskgroups that allow adding and modifying users " +"you\n" +"could create a role, useradmin. You would assign users to the useradmin\n" +"role to allow them to do the operations defined by the taskgroups.\n" +"\n" +"You can create ACIs that delegate permission so users in group A can write\n" +"attributes on group B.\n" +"\n" +"The type option is a map that applies to all entries in the users, groups " +"or\n" +"host location. It is primarily designed to be used when granting add\n" +"permissions (to write new entries).\n" +"\n" +"An ACI consists of three parts:\n" +"1. target\n" +"2. permissions\n" +"3. bind rules\n" +"\n" +"The target is a set of rules that define which LDAP objects are being\n" +"targeted. This can include a list of attributes, an area of that LDAP\n" +"tree or an LDAP filter.\n" +"\n" +"The targets include:\n" +"- attrs: list of attributes affected\n" +"- type: an object type (user, group, host, service, etc)\n" +"- memberof: members of a group\n" +"- targetgroup: grant access to modify a specific group. This is primarily\n" +" designed to enable users to add or remove members of a specific group.\n" +"- filter: A legal LDAP filter used to narrow the scope of the target.\n" +"- subtree: Used to apply a rule across an entire set of objects. For " +"example,\n" +" to allow adding users you need to grant \"add\" permission to the subtree\n" +" ldap://uid=*,cn=users,cn=accounts,dc=example,dc=com. The subtree option\n" +" is a fail-safe for objects that may not be covered by the type option.\n" +"\n" +"The permissions define what the ACI is allowed to do, and are one or\n" +"more of:\n" +"1. write - write one or more attributes\n" +"2. read - read one or more attributes\n" +"3. add - add a new entry to the tree\n" +"4. delete - delete an existing entry\n" +"5. all - all permissions are granted\n" +"\n" +"Note the distinction between attributes and entries. The permissions are\n" +"independent, so being able to add a user does not mean that the user will\n" +"be editable.\n" +"\n" +"The bind rule defines who this ACI grants permissions to. The LDAP server\n" +"allows this to be any valid LDAP entry but we encourage the use of\n" +"taskgroups so that the rights can be easily shared through roles.\n" +"\n" +"For a more thorough description of access controls see\n" +"http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control." +"html\n" +"\n" +"EXAMPLES:\n" +"\n" +"NOTE: ACIs are now added via the permission plugin. These examples are to\n" +"demonstrate how the various options work but this is done via the " +"permission\n" +"command-line now (see last example).\n" +"\n" +" Add an ACI so that the group \"secretaries\" can update the address on any " +"user:\n" +" ipa group-add --desc=\"Office secretaries\" secretaries\n" +" ipa aci-add --attrs=streetAddress --memberof=ipausers --group=secretaries " +"--permissions=write --prefix=none \"Secretaries write addresses\"\n" +"\n" +" Show the new ACI:\n" +" ipa aci-show --prefix=none \"Secretaries write addresses\"\n" +"\n" +" Add an ACI that allows members of the \"addusers\" permission to add new " +"users:\n" +" ipa aci-add --type=user --permission=addusers --permissions=add --" +"prefix=none \"Add new users\"\n" +"\n" +" Add an ACI that allows members of the editors manage members of the admins " +"group:\n" +" ipa aci-add --permissions=write --attrs=member --targetgroup=admins --" +"group=editors --prefix=none \"Editors manage admins\"\n" +"\n" +" Add an ACI that allows members of the admins group to manage the street and " +"zip code of those in the editors group:\n" +" ipa aci-add --permissions=write --memberof=editors --group=admins --" +"attrs=street --attrs=postalcode --prefix=none \"admins edit the address of " +"editors\"\n" +"\n" +" Add an ACI that allows the admins group manage the street and zipcode of " +"those who work for the boss:\n" +" ipa aci-add --permissions=write --group=admins --attrs=street --" +"attrs=postalcode --filter=\"(manager=uid=boss,cn=users,cn=accounts," +"dc=example,dc=com)\" --prefix=none \"Edit the address of those who work for " +"the boss\"\n" +"\n" +" Add an entirely new kind of record to IPA that isn't covered by any of the " +"--type options, creating a permission:\n" +" ipa permission-add --permissions=add --subtree=\"cn=*,cn=orange," +"cn=accounts,dc=example,dc=com\" --desc=\"Add Orange Entries\" add_orange\n" +"\n" +"\n" +"The show command shows the raw 389-ds ACI.\n" +"\n" +"IMPORTANT: When modifying the target attributes of an existing ACI you\n" +"must include all existing attributes as well. When doing an aci-mod the\n" +"targetattr REPLACES the current attributes, it does not add to them.\n" +msgstr "" + +#: ipaserver/plugins/aci.py:165 +msgid "A list of ACI values" +msgstr "" + +#: ipaserver/plugins/aci.py:229 +msgid "type, filter, subtree and targetgroup are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/aci.py:232 +msgid "ACI prefix is required" +msgstr "" + +#: ipaserver/plugins/aci.py:235 +msgid "" +"at least one of: type, filter, subtree, targetgroup, attrs or memberof are " +"required" +msgstr "" + +#: ipaserver/plugins/aci.py:238 +msgid "filter and memberof are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/aci.py:244 +msgid "group, permission and self are mutually exclusive" +msgstr "" + +#: ipaserver/plugins/aci.py:246 +msgid "One of group, permission or self is required" +msgstr "" + +#: ipaserver/plugins/aci.py:269 +#, python-format +msgid "Group '%s' does not exist" +msgstr "" + +#: ipaserver/plugins/aci.py:295 +msgid "empty filter" +msgstr "" + +#: ipaserver/plugins/aci.py:316 +#, python-format +msgid "Syntax Error: %(error)s" +msgstr "" + +#: ipaserver/plugins/aci.py:361 +#, python-format +msgid "invalid DN (%s)" +msgstr "" + +#: ipaserver/plugins/aci.py:408 +#, python-format +msgid "ACI with name \"%s\" not found" +msgstr "" + +#: ipaserver/plugins/aci.py:427 ipaclient/remote_plugins/2_114/aci.py:278 +msgid "ACI prefix" +msgstr "" + +#: ipaserver/plugins/aci.py:428 ipaclient/remote_plugins/2_114/aci.py:279 +msgid "" +"Prefix used to distinguish ACI types (permission, delegation, selfservice, " +"none)" +msgstr "" + +#: ipaserver/plugins/aci.py:437 +msgid "ACI object." +msgstr "" + +#: ipaserver/plugins/aci.py:440 +msgid "ACIs" +msgstr "" + +#: ipaserver/plugins/aci.py:445 ipaclient/remote_plugins/2_114/aci.py:128 +msgid "ACI name" +msgstr "" + +#: ipaserver/plugins/aci.py:452 ipaclient/remote_plugins/2_114/aci.py:134 +msgid "Permission ACI grants access to" +msgstr "" + +#: ipaserver/plugins/aci.py:457 ipaserver/plugins/delegation.py:97 +msgid "User group" +msgstr "" + +#: ipaserver/plugins/aci.py:458 ipaserver/plugins/delegation.py:98 +msgid "User group ACI grants access to" +msgstr "" + +#: ipaserver/plugins/aci.py:464 ipaclient/remote_plugins/2_114/aci.py:146 +msgid "Permissions to grant(read, write, add, delete, all)" +msgstr "" + +#: ipaserver/plugins/aci.py:471 ipaclient/remote_plugins/2_114/aci.py:152 +msgid "Attributes to which the permission applies" +msgstr "" + +#: ipaserver/plugins/aci.py:478 ipaclient/remote_plugins/2_114/aci.py:159 +msgid "type of IPA object (user, group, host, hostgroup, service, netgroup)" +msgstr "" + +#: ipaserver/plugins/aci.py:484 ipaclient/remote_plugins/2_114/aci.py:164 +msgid "Member of" +msgstr "" + +#: ipaserver/plugins/aci.py:485 ipaclient/remote_plugins/2_114/aci.py:165 +msgid "Member of a group" +msgstr "" + +#: ipaserver/plugins/aci.py:491 ipaclient/remote_plugins/2_114/aci.py:171 +msgid "Legal LDAP filter (e.g. ou=Engineering)" +msgstr "" + +#: ipaserver/plugins/aci.py:497 ipaclient/remote_plugins/2_114/aci.py:177 +msgid "Subtree to apply ACI to" +msgstr "" + +#: ipaserver/plugins/aci.py:503 ipaclient/remote_plugins/2_114/aci.py:183 +msgid "Group to apply ACI to" +msgstr "" + +#: ipaserver/plugins/aci.py:508 ipaclient/remote_plugins/2_114/aci.py:188 +msgid "Target your own entry (self)" +msgstr "" + +#: ipaserver/plugins/aci.py:509 ipaclient/remote_plugins/2_114/aci.py:189 +msgid "Apply ACI to your own entry (self)" +msgstr "" + +#: ipaserver/plugins/aci.py:522 ipaclient/remote_plugins/2_114/aci.py:196 +msgid "Create new ACI." +msgstr "" + +#: ipaserver/plugins/aci.py:524 +#, python-format +msgid "Created ACI \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/aci.py:529 ipaclient/remote_plugins/2_114/aci.py:284 +msgid "Test the ACI syntax but don't write anything" +msgstr "" + +#: ipaserver/plugins/aci.py:574 ipaclient/remote_plugins/2_114/aci.py:321 +msgid "Delete ACI." +msgstr "" + +#: ipaserver/plugins/aci.py:577 +#, python-format +msgid "Deleted ACI \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/aci.py:613 ipaclient/remote_plugins/2_114/aci.py:518 +msgid "Modify ACI." +msgstr "" + +#: ipaserver/plugins/aci.py:620 +#, python-format +msgid "Modified ACI \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/aci.py:674 ipaclient/remote_plugins/2_114/aci.py:361 +msgid "" +"\n" +"Search for ACIs.\n" +"\n" +" Returns a list of ACIs\n" +"\n" +" EXAMPLES:\n" +"\n" +" To find all ACIs that apply directly to members of the group ipausers:\n" +" ipa aci-find --memberof=ipausers\n" +"\n" +" To find all ACIs that grant add access:\n" +" ipa aci-find --permissions=add\n" +"\n" +" Note that the find command only looks for the given text in the set of\n" +" ACIs, it does not evaluate the ACIs to see if something would apply.\n" +" For example, searching on memberof=ipausers will find all ACIs that\n" +" have ipausers as a memberof. There may be other ACIs that apply to\n" +" members of that group indirectly.\n" +" " +msgstr "" + +#: ipaserver/plugins/aci.py:694 +#, python-format +msgid "%(count)d ACI matched" +msgid_plural "%(count)d ACIs matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/aci.py:880 ipaclient/remote_plugins/2_114/aci.py:760 +msgid "Display a single ACI given an ACI name." +msgstr "" + +#: ipaserver/plugins/aci.py:886 ipaclient/remote_plugins/2_114/aci.py:782 +msgid "Location of the ACI" +msgstr "" + +#: ipaserver/plugins/aci.py:919 ipaclient/remote_plugins/2_114/aci.py:637 +msgid "Rename an ACI." +msgstr "" + +#: ipaserver/plugins/aci.py:925 ipaclient/remote_plugins/2_114/aci.py:725 +msgid "New ACI name" +msgstr "" + +#: ipaserver/plugins/aci.py:929 +#, python-format +msgid "Renamed ACI to \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/virtual.py:57 +msgid "operation not defined" +msgstr "" + +#: ipaserver/plugins/virtual.py:70 +#, python-format +msgid "not allowed to perform operation: %s" +msgstr "" + +#: ipaserver/plugins/virtual.py:72 +msgid "No such virtual command" +msgstr "" + +#: ipaserver/plugins/certmap.py:50 +msgid "" +"\n" +"Certificate Identity Mapping\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:52 +msgid "" +"\n" +"Manage Certificate Identity Mapping configuration and rules.\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:54 +msgid "" +"\n" +"IPA supports the use of certificates for authentication. Certificates can\n" +"either be stored in the user entry (full certificate in the usercertificate\n" +"attribute), or simply linked to the user entry through a mapping.\n" +"This code enables the management of the rules allowing to link a\n" +"certificate to a user entry.\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:62 +msgid "" +"\n" +" Display the Certificate Identity Mapping global configuration:\n" +" ipa certmapconfig-show\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:65 +msgid "" +"\n" +" Modify Certificate Identity Mapping global configuration:\n" +" ipa certmapconfig-mod --promptusername=TRUE\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:68 +msgid "" +"\n" +" Create a new Certificate Identity Mapping Rule:\n" +" ipa certmaprule-add rule1 --desc=\"Link certificate with subject and " +"issuer\"\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:71 +msgid "" +"\n" +" Modify a Certificate Identity Mapping Rule:\n" +" ipa certmaprule-mod rule1 --maprule=\"\"\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:74 +msgid "" +"\n" +" Disable a Certificate Identity Mapping Rule:\n" +" ipa certmaprule-disable rule1\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:77 +msgid "" +"\n" +" Enable a Certificate Identity Mapping Rule:\n" +" ipa certmaprule-enable rule1\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:80 +msgid "" +"\n" +" Display information about a Certificate Identity Mapping Rule:\n" +" ipa certmaprule-show rule1\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:83 +msgid "" +"\n" +" Find all Certificate Identity Mapping Rules with the specified domain:\n" +" ipa certmaprule-find --domain example.com\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:86 +msgid "" +"\n" +" Delete a Certificate Identity Mapping Rule:\n" +" ipa certmaprule-del rule1\n" +msgstr "" + +#: ipaserver/plugins/certmap.py:141 ipaserver/plugins/certmap.py:148 +#: ipaserver/plugins/certmap.py:175 ipaserver/plugins/trust.py:848 +msgid "domain" +msgstr "" + +#: ipaserver/plugins/certmap.py:142 +#, python-format +msgid "" +"The domain(s) \"%s\" cannot be used to apply altSecurityIdentities check." +msgstr "" + +#: ipaserver/plugins/certmap.py:149 +msgid "" +"The mapping rule with altSecurityIdentities should be applied to a trusted " +"Active Directory domain but no domain was associated with the rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:176 +#, python-format +msgid "The domain %s is neither IPA domain nor a trusteddomain." +msgstr "" + +#: ipaserver/plugins/certmap.py:186 +msgid "Certificate Identity Mapping configuration options" +msgstr "" + +#: ipaserver/plugins/certmap.py:191 ipaserver/plugins/certmap.py:192 +msgid "Certificate Identity Mapping Global Configuration" +msgstr "" + +#: ipaserver/plugins/certmap.py:198 +msgid "Prompt for the username" +msgstr "" + +#: ipaserver/plugins/certmap.py:199 +msgid "" +"Prompt for the username when multiple identities are mapped to a certificate" +msgstr "" + +#: ipaserver/plugins/certmap.py:229 +msgid "Modify Certificate Identity Mapping configuration." +msgstr "" + +#: ipaserver/plugins/certmap.py:234 +msgid "Show the current Certificate Identity Mapping configuration." +msgstr "" + +#: ipaserver/plugins/certmap.py:243 ipaserver/plugins/certmap.py:247 +msgid "Certificate Identity Mapping Rules" +msgstr "" + +#: ipaserver/plugins/certmap.py:244 ipaserver/plugins/certmap.py:246 +msgid "Certificate Identity Mapping Rule" +msgstr "" + +#: ipaserver/plugins/certmap.py:274 +msgid "Certificate Identity Mapping Rule name" +msgstr "" + +#: ipaserver/plugins/certmap.py:280 +msgid "Certificate Identity Mapping Rule description" +msgstr "" + +#: ipaserver/plugins/certmap.py:285 +msgid "Mapping rule" +msgstr "" + +#: ipaserver/plugins/certmap.py:286 +msgid "Rule used to map the certificate with a user entry" +msgstr "" + +#: ipaserver/plugins/certmap.py:291 +msgid "Matching rule" +msgstr "" + +#: ipaserver/plugins/certmap.py:292 +msgid "Rule used to check if a certificate can be used for authentication" +msgstr "" + +#: ipaserver/plugins/certmap.py:298 ipaserver/plugins/trust.py:1580 +msgid "Domain name" +msgstr "" + +#: ipaserver/plugins/certmap.py:299 +msgid "Domain where the user entry will be searched" +msgstr "" + +#: ipaserver/plugins/certmap.py:305 +msgid "Priority of the rule (higher number means lower priority" +msgstr "" + +#: ipaserver/plugins/certmap.py:356 +msgid "Create a new Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:358 +#, python-format +msgid "Added Certificate Identity Mapping Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certmap.py:369 +msgid "Modify a Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:371 +#, python-format +msgid "Modified Certificate Identity Mapping Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certmap.py:392 +msgid "Search for Certificate Identity Mapping Rules." +msgstr "" + +#: ipaserver/plugins/certmap.py:395 +#, python-format +msgid "%(count)d Certificate Identity Mapping Rule matched" +msgid_plural "%(count)d Certificate Identity Mapping Rules matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/certmap.py:402 +msgid "Display information about a Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:408 +msgid "Delete a Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:410 +#, python-format +msgid "Deleted Certificate Identity Mapping Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certmap.py:415 +msgid "Enable a Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:417 +#, python-format +msgid "Enabled Certificate Identity Mapping Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certmap.py:444 +msgid "Disable a Certificate Identity Mapping Rule." +msgstr "" + +#: ipaserver/plugins/certmap.py:446 +#, python-format +msgid "Disabled Certificate Identity Mapping Rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certmap.py:500 +msgid "Failed to connect to sssd over SystemBus. See details in the error_log" +msgstr "" + +#: ipaserver/plugins/certmap.py:554 +msgid "Failed to find users over SystemBus. See details in the error_log" +msgstr "" + +#: ipaserver/plugins/certmap.py:571 +msgid "User logins" +msgstr "" + +#: ipaserver/plugins/certmap.py:579 +msgid "" +"\n" +" Search for users matching the provided certificate.\n" +"\n" +" This command relies on SSSD to retrieve the list of matching users and\n" +" may return cached data. For more information on purging SSSD cache,\n" +" please refer to sss_cache documentation.\n" +" " +msgstr "" + +#: ipaserver/plugins/certmap.py:587 +#, python-format +msgid "%(count)s user matched" +msgid_plural "%(count)s users matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/migration.py:46 +msgid "" +"\n" +"Migration to IPA\n" +"\n" +"Migrate users and groups from an LDAP server to IPA.\n" +"\n" +"This performs an LDAP query against the remote server searching for\n" +"users and groups in a container. In order to migrate passwords you need\n" +"to bind as a user that can read the userPassword attribute on the remote\n" +"server. This is generally restricted to high-level admins such as\n" +"cn=Directory Manager in 389-ds (this is the default bind user).\n" +"\n" +"The default user container is ou=People.\n" +"\n" +"The default group container is ou=Groups.\n" +"\n" +"Users and groups that already exist on the IPA server are skipped.\n" +"\n" +"Two LDAP schemas define how group members are stored: RFC2307 and\n" +"RFC2307bis. RFC2307bis uses member and uniquemember to specify group\n" +"members, RFC2307 uses memberUid. The default schema is RFC2307bis.\n" +"\n" +"The schema compat feature allows IPA to reformat data for systems that\n" +"do not support RFC2307bis. It is recommended that this feature is disabled\n" +"during migration to reduce system overhead. It can be re-enabled after\n" +"migration. To migrate with it enabled use the \"--with-compat\" option.\n" +"\n" +"Migrated users do not have Kerberos credentials, they have only their\n" +"LDAP password. To complete the migration process, users need to go\n" +"to http://ipa.example.com/ipa/migration and authenticate using their\n" +"LDAP password in order to generate their Kerberos credentials.\n" +"\n" +"Migration is disabled by default. Use the command ipa config-mod to\n" +"enable it:\n" +"\n" +" ipa config-mod --enable-migration=TRUE\n" +"\n" +"If a base DN is not provided with --basedn then IPA will use either\n" +"the value of defaultNamingContext if it is set or the first value\n" +"in namingContexts set in the root of the remote LDAP server.\n" +"\n" +"Users are added as members to the default user group. This can be a\n" +"time-intensive task so during migration this is done in a batch\n" +"mode for every 100 users. As a result there will be a window in which\n" +"users will be added to IPA but will not be members of the default\n" +"user group.\n" +"\n" +"EXAMPLES:\n" +"\n" +" The simplest migration, accepting all defaults:\n" +" ipa migrate-ds ldap://ds.example.com:389\n" +"\n" +" Specify the user and group container. This can be used to migrate user\n" +" and group data from an IPA v1 server:\n" +" ipa migrate-ds --user-container='cn=users,cn=accounts' \\\n" +" --group-container='cn=groups,cn=accounts' \\\n" +" ldap://ds.example.com:389\n" +"\n" +" Since IPA v2 server already contain predefined groups that may collide " +"with\n" +" groups in migrated (IPA v1) server (for example admins, ipausers), users\n" +" having colliding group as their primary group may happen to belong to\n" +" an unknown group on new IPA v2 server.\n" +" Use --group-overwrite-gid option to overwrite GID of already existing " +"groups\n" +" to prevent this issue:\n" +" ipa migrate-ds --group-overwrite-gid \\\n" +" --user-container='cn=users,cn=accounts' \\\n" +" --group-container='cn=groups,cn=accounts' \\\n" +" ldap://ds.example.com:389\n" +"\n" +" Migrated users or groups may have object class and accompanied attributes\n" +" unknown to the IPA v2 server. These object classes and attributes may be\n" +" left out of the migration process:\n" +" ipa migrate-ds --user-container='cn=users,cn=accounts' \\\n" +" --group-container='cn=groups,cn=accounts' \\\n" +" --user-ignore-objectclass=radiusprofile \\\n" +" --user-ignore-attribute=radiusgroupname \\\n" +" ldap://ds.example.com:389\n" +"\n" +"LOGGING\n" +"\n" +"Migration will log warnings and errors to the Apache error log. This\n" +"file should be evaluated post-migration to correct or investigate any\n" +"issues that were discovered.\n" +"\n" +"For every 100 users migrated an info-level message will be displayed to\n" +"give the current progress and duration to make it possible to track\n" +"the progress of migration.\n" +"\n" +"If the log level is debug, either by setting debug = True in\n" +"/etc/ipa/default.conf or /etc/ipa/server.conf, then an entry will be " +"printed\n" +"for each user added plus a summary when the default user group is\n" +"updated.\n" +msgstr "" + +#: ipaserver/plugins/migration.py:145 +#, python-format +msgid "" +"Kerberos principal %s already exists. Use 'ipa user-mod' to set it manually." +msgstr "" + +#: ipaserver/plugins/migration.py:146 +#, python-format +msgid "" +"Unable to determine if Kerberos principal %s already exists. Use 'ipa user-" +"mod' to set it manually." +msgstr "" + +#: ipaserver/plugins/migration.py:147 +msgid "" +"Failed to add user to the default group. Use 'ipa group-add-member' to add " +"manually." +msgstr "" + +#: ipaserver/plugins/migration.py:148 +msgid "Migration of LDAP search reference is not supported." +msgstr "" + +#: ipaserver/plugins/migration.py:149 +msgid "Malformed DN" +msgstr "" + +#: ipaserver/plugins/migration.py:194 +#, python-format +msgid "%(user)s is not a POSIX user" +msgstr "" + +#: ipaserver/plugins/migration.py:461 +msgid "" +". Check GID of the existing group. Use --group-overwrite-gid option to " +"overwrite the GID" +msgstr "" + +#: ipaserver/plugins/migration.py:476 +msgid "Invalid LDAP URI." +msgstr "" + +#: ipaserver/plugins/migration.py:482 +msgid "Migrate users and groups from DS to IPA." +msgstr "" + +#: ipaserver/plugins/migration.py:529 +msgid "LDAP URI" +msgstr "" + +#: ipaserver/plugins/migration.py:530 +msgid "LDAP URI of DS server to migrate from" +msgstr "" + +#: ipaserver/plugins/migration.py:536 +msgid "bind password" +msgstr "" + +#: ipaserver/plugins/migration.py:543 +msgid "Bind DN" +msgstr "" + +#: ipaserver/plugins/migration.py:549 +msgid "User container" +msgstr "" + +#: ipaserver/plugins/migration.py:550 +msgid "DN of container for users in DS relative to base DN" +msgstr "" + +#: ipaserver/plugins/migration.py:556 +msgid "Group container" +msgstr "" + +#: ipaserver/plugins/migration.py:557 +msgid "DN of container for groups in DS relative to base DN" +msgstr "" + +#: ipaserver/plugins/migration.py:563 +msgid "User object class" +msgstr "" + +#: ipaserver/plugins/migration.py:564 +msgid "Objectclasses used to search for user entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:570 +msgid "Group object class" +msgstr "" + +#: ipaserver/plugins/migration.py:571 +msgid "Objectclasses used to search for group entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:577 +msgid "Ignore user object class" +msgstr "" + +#: ipaserver/plugins/migration.py:578 +msgid "Objectclasses to be ignored for user entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:584 +msgid "Ignore user attribute" +msgstr "" + +#: ipaserver/plugins/migration.py:585 +msgid "Attributes to be ignored for user entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:591 +msgid "Ignore group object class" +msgstr "" + +#: ipaserver/plugins/migration.py:592 +msgid "Objectclasses to be ignored for group entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:598 +msgid "Ignore group attribute" +msgstr "" + +#: ipaserver/plugins/migration.py:599 +msgid "Attributes to be ignored for group entries in DS" +msgstr "" + +#: ipaserver/plugins/migration.py:605 +msgid "Overwrite GID" +msgstr "" + +#: ipaserver/plugins/migration.py:606 +msgid "" +"When migrating a group already existing in IPA domain overwrite the group " +"GID and report as success" +msgstr "" + +#: ipaserver/plugins/migration.py:611 +msgid "LDAP schema" +msgstr "" + +#: ipaserver/plugins/migration.py:612 +msgid "" +"The schema used on the LDAP server. Supported values are RFC2307 and " +"RFC2307bis. The default is RFC2307bis" +msgstr "" + +#: ipaserver/plugins/migration.py:618 +msgid "Continue" +msgstr "" + +#: ipaserver/plugins/migration.py:619 +msgid "" +"Continuous operation mode. Errors are reported but the process continues" +msgstr "" + +#: ipaserver/plugins/migration.py:624 +msgid "Base DN" +msgstr "" + +#: ipaserver/plugins/migration.py:625 +msgid "Base DN on remote LDAP server" +msgstr "" + +#: ipaserver/plugins/migration.py:629 +msgid "Ignore compat plugin" +msgstr "" + +#: ipaserver/plugins/migration.py:630 +msgid "Allows migration despite the usage of compat plugin" +msgstr "" + +#: ipaserver/plugins/migration.py:635 +msgid "CA certificate" +msgstr "" + +#: ipaserver/plugins/migration.py:636 +msgid "Load CA certificate of LDAP server from FILE" +msgstr "" + +#: ipaserver/plugins/migration.py:642 +msgid "Add to default group" +msgstr "" + +#: ipaserver/plugins/migration.py:643 +msgid "Add migrated users without a group to a default group (default: true)" +msgstr "" + +#: ipaserver/plugins/migration.py:650 +msgid "Search scope" +msgstr "" + +#: ipaserver/plugins/migration.py:651 +msgid "" +"LDAP search scope for users and groups: base, onelevel, or subtree. Defaults " +"to onelevel" +msgstr "" + +#: ipaserver/plugins/migration.py:662 +msgid "Lists of objects migrated; categorized by type." +msgstr "" + +#: ipaserver/plugins/migration.py:666 +msgid "Lists of objects that could not be migrated; categorized by type." +msgstr "" + +#: ipaserver/plugins/migration.py:670 +msgid "False if migration mode was disabled." +msgstr "" + +#: ipaserver/plugins/migration.py:674 +msgid "False if migration fails because the compatibility plug-in is enabled." +msgstr "" + +#: ipaserver/plugins/migration.py:678 +#, python-format +msgid "%s to exclude from migration" +msgstr "" + +#: ipaserver/plugins/migration.py:680 +msgid "" +"search results for objects to be migrated\n" +"have been truncated by the server;\n" +"migration process might be incomplete\n" +msgstr "" + +#: ipaserver/plugins/migration.py:769 +#, python-format +msgid "" +"%(container)s LDAP search did not return any result (search base: " +"%(search_base)s, objectclass: %(objectclass)s)" +msgstr "" + +#: ipaserver/plugins/automember.py:43 +msgid "" +"\n" +"Auto Membership Rule.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:45 +msgid "" +"\n" +"Bring clarity to the membership of hosts and users by configuring inclusive\n" +"or exclusive regex patterns, you can automatically assign a new entries " +"into\n" +"a group or hostgroup based upon attribute information.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:49 +msgid "" +"\n" +"A rule is directly associated with a group by name, so you cannot create\n" +"a rule without an accompanying group or hostgroup.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:52 +msgid "" +"\n" +"A condition is a regular expression used by 389-ds to match a new incoming\n" +"entry with an automember rule. If it matches an inclusive rule then the\n" +"entry is added to the appropriate group or hostgroup.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:56 +msgid "" +"\n" +"A default group or hostgroup could be specified for entries that do not\n" +"match any rule. In case of user entries this group will be a fallback group\n" +"because all users are by default members of group specified in IPA config.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:60 +msgid "" +"\n" +"The automember-rebuild command can be used to retroactively run automember " +"rules\n" +"against existing entries, thus rebuilding their membership.\n" +msgstr "" + +#: ipaserver/plugins/automember.py:65 +msgid "" +"\n" +" Add the initial group or hostgroup:\n" +" ipa hostgroup-add --desc=\"Web Servers\" webservers\n" +" ipa group-add --desc=\"Developers\" devel\n" +msgstr "" + +#: ipaserver/plugins/automember.py:69 +msgid "" +"\n" +" Add the initial rule:\n" +" ipa automember-add --type=hostgroup webservers\n" +" ipa automember-add --type=group devel\n" +msgstr "" + +#: ipaserver/plugins/automember.py:73 +msgid "" +"\n" +" Add a condition to the rule:\n" +" ipa automember-add-condition --key=fqdn --type=hostgroup --inclusive-" +"regex=^web[1-9]+\\.example\\.com webservers\n" +" ipa automember-add-condition --key=manager --type=group --inclusive-" +"regex=^uid=mscott devel\n" +msgstr "" + +#: ipaserver/plugins/automember.py:77 +msgid "" +"\n" +" Add an exclusive condition to the rule to prevent auto assignment:\n" +" ipa automember-add-condition --key=fqdn --type=hostgroup --exclusive-" +"regex=^web5\\.example\\.com webservers\n" +msgstr "" + +#: ipaserver/plugins/automember.py:80 +msgid "" +"\n" +" Add a host:\n" +" ipa host-add web1.example.com\n" +msgstr "" + +#: ipaserver/plugins/automember.py:83 +msgid "" +"\n" +" Add a user:\n" +" ipa user-add --first=Tim --last=User --password tuser1 --manager=mscott\n" +msgstr "" + +#: ipaserver/plugins/automember.py:86 +msgid "" +"\n" +" Verify automembership:\n" +" ipa hostgroup-show webservers\n" +" Host-group: webservers\n" +" Description: Web Servers\n" +" Member hosts: web1.example.com\n" +"\n" +" ipa group-show devel\n" +" Group name: devel\n" +" Description: Developers\n" +" GID: 1004200000\n" +" Member users: tuser\n" +msgstr "" + +#: ipaserver/plugins/automember.py:98 +msgid "" +"\n" +" Remove a condition from the rule:\n" +" ipa automember-remove-condition --key=fqdn --type=hostgroup --inclusive-" +"regex=^web[1-9]+\\.example\\.com webservers\n" +msgstr "" + +#: ipaserver/plugins/automember.py:101 +msgid "" +"\n" +" Modify the automember rule:\n" +" ipa automember-mod\n" +msgstr "" + +#: ipaserver/plugins/automember.py:104 +msgid "" +"\n" +" Set the default (fallback) target group:\n" +" ipa automember-default-group-set --default-group=webservers --" +"type=hostgroup\n" +" ipa automember-default-group-set --default-group=ipausers --type=group\n" +msgstr "" + +#: ipaserver/plugins/automember.py:108 +msgid "" +"\n" +" Remove the default (fallback) target group:\n" +" ipa automember-default-group-remove --type=hostgroup\n" +" ipa automember-default-group-remove --type=group\n" +msgstr "" + +#: ipaserver/plugins/automember.py:112 +msgid "" +"\n" +" Show the default (fallback) target group:\n" +" ipa automember-default-group-show --type=hostgroup\n" +" ipa automember-default-group-show --type=group\n" +msgstr "" + +#: ipaserver/plugins/automember.py:116 +msgid "" +"\n" +" Find all of the automember rules:\n" +" ipa automember-find\n" +msgstr "" + +#: ipaserver/plugins/automember.py:119 +msgid "" +"\n" +" Find all of the orphan automember rules:\n" +" ipa automember-find-orphans --type=hostgroup\n" +" Find all of the orphan automember rules and remove them:\n" +" ipa automember-find-orphans --type=hostgroup --remove\n" +msgstr "" + +#: ipaserver/plugins/automember.py:124 +msgid "" +"\n" +" Display a automember rule:\n" +" ipa automember-show --type=hostgroup webservers\n" +" ipa automember-show --type=group devel\n" +msgstr "" + +#: ipaserver/plugins/automember.py:128 +msgid "" +"\n" +" Delete an automember rule:\n" +" ipa automember-del --type=hostgroup webservers\n" +" ipa automember-del --type=group devel\n" +msgstr "" + +#: ipaserver/plugins/automember.py:132 +msgid "" +"\n" +" Rebuild membership for all users:\n" +" ipa automember-rebuild --type=group\n" +msgstr "" + +#: ipaserver/plugins/automember.py:135 +msgid "" +"\n" +" Rebuild membership for all hosts:\n" +" ipa automember-rebuild --type=hostgroup\n" +msgstr "" + +#: ipaserver/plugins/automember.py:138 +msgid "" +"\n" +" Rebuild membership for specified users:\n" +" ipa automember-rebuild --users=tuser1 --users=tuser2\n" +msgstr "" + +#: ipaserver/plugins/automember.py:141 +msgid "" +"\n" +" Rebuild membership for specified hosts:\n" +" ipa automember-rebuild --hosts=web1.example.com --hosts=web2.example." +"com\n" +msgstr "" + +#: ipaserver/plugins/automember.py:160 ipaserver/plugins/automember.py:161 +msgid "Inclusive Regex" +msgstr "" + +#: ipaserver/plugins/automember.py:167 ipaserver/plugins/automember.py:168 +msgid "Exclusive Regex" +msgstr "" + +#: ipaserver/plugins/automember.py:176 +msgid "Attribute Key" +msgstr "" + +#: ipaserver/plugins/automember.py:177 +msgid "" +"Attribute to filter via regex. For example fqdn for a host, or manager for a " +"user" +msgstr "" + +#: ipaserver/plugins/automember.py:184 +msgid "Grouping Type" +msgstr "" + +#: ipaserver/plugins/automember.py:185 +msgid "Grouping to which the rule applies" +msgstr "" + +#: ipaserver/plugins/automember.py:244 +msgid "Auto Membership Rule" +msgstr "" + +#: ipaserver/plugins/automember.py:249 ipaserver/plugins/automember.py:250 +msgid "Automember Rule" +msgstr "" + +#: ipaserver/plugins/automember.py:258 +msgid "A description of this auto member rule" +msgstr "" + +#: ipaserver/plugins/automember.py:262 ipaserver/plugins/automember.py:585 +msgid "Default (fallback) Group" +msgstr "" + +#: ipaserver/plugins/automember.py:263 +msgid "Default group for entries to land" +msgstr "" + +#: ipaserver/plugins/automember.py:275 +#, python-format +msgid "%(otype)s \"%(oname)s\" not found" +msgstr "" + +#: ipaserver/plugins/automember.py:301 +#, python-format +msgid "%s is not a valid attribute." +msgstr "" + +#: ipaserver/plugins/automember.py:314 +msgid "" +"\n" +" Add an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:318 +#, python-format +msgid "Added automember rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:325 +msgid "Auto Membership is not configured" +msgstr "" + +#: ipaserver/plugins/automember.py:337 +msgid "" +"\n" +" Add conditions to an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:342 ipaclient/plugins/automember.py:33 +msgid "Failed to add" +msgstr "" + +#: ipaserver/plugins/automember.py:348 +#, python-format +msgid "Added condition(s) to \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:357 +msgid "Conditions that could not be added" +msgstr "" + +#: ipaserver/plugins/automember.py:361 +msgid "Number of conditions added" +msgstr "" + +#: ipaserver/plugins/automember.py:371 ipaserver/plugins/automember.py:455 +#, python-format +msgid "Auto member rule: %s not found!" +msgstr "" + +#: ipaserver/plugins/automember.py:413 +msgid "" +"\n" +" Override this so we can add completed and failed to the return " +"result.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:428 +msgid "" +"\n" +" Remove conditions from an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:432 +#, python-format +msgid "Removed condition(s) from \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:441 +msgid "Conditions that could not be removed" +msgstr "" + +#: ipaserver/plugins/automember.py:445 +msgid "Number of conditions removed" +msgstr "" + +#: ipaserver/plugins/automember.py:496 +msgid "" +"\n" +" Override this so we can set completed and failed.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:511 +msgid "" +"\n" +" Modify an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:515 +#, python-format +msgid "Modified automember rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:525 +msgid "" +"\n" +" Delete an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:529 +#, python-format +msgid "Deleted automember rule \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:534 +msgid "" +"\n" +" Search for automember rules.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:540 ipaserver/plugins/automember.py:840 +#, python-format +msgid "%(count)d rules matched" +msgid_plural "%(count)d rules matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/automember.py:552 +msgid "" +"\n" +" Display information about an automember rule.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:576 +msgid "" +"\n" +" Set default (fallback) group for all unmatched entries.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:586 +msgid "Default (fallback) group for entries to land" +msgstr "" + +#: ipaserver/plugins/automember.py:590 +#, python-format +msgid "Set default (fallback) group for automember \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:607 +msgid "" +"\n" +" Remove default (fallback) group for all unmatched entries.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:614 +#, python-format +msgid "Removed default (fallback) group for automember \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/automember.py:625 ipaserver/plugins/automember.py:633 +#: ipaserver/plugins/automember.py:661 +msgid "No default (fallback) group set" +msgstr "" + +#: ipaserver/plugins/automember.py:644 +msgid "" +"\n" +" Display information about the default (fallback) automember groups.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:675 +msgid "Task DN" +msgstr "" + +#: ipaserver/plugins/automember.py:676 +msgid "DN of the started task" +msgstr "" + +#: ipaserver/plugins/automember.py:683 +msgid "Rebuild auto membership." +msgstr "" + +#: ipaserver/plugins/automember.py:693 +msgid "Rebuild membership for all members of a grouping" +msgstr "" + +#: ipaserver/plugins/automember.py:698 +msgid "Rebuild membership for specified users" +msgstr "" + +#: ipaserver/plugins/automember.py:703 +msgid "Rebuild membership for specified hosts" +msgstr "" + +#: ipaserver/plugins/automember.py:708 +msgid "No wait" +msgstr "" + +#: ipaserver/plugins/automember.py:709 +msgid "Don't wait for rebuilding membership" +msgstr "" + +#: ipaserver/plugins/automember.py:727 +msgid "at least one of options: type, users, hosts must be specified" +msgstr "" + +#: ipaserver/plugins/automember.py:733 +msgid "users and hosts cannot both be set" +msgstr "" + +#: ipaserver/plugins/automember.py:737 +msgid "hosts cannot be set when type is 'group'" +msgstr "" + +#: ipaserver/plugins/automember.py:741 +msgid "users cannot be set when type is 'hostgroup'" +msgstr "" + +#: ipaserver/plugins/automember.py:795 +msgid "Automember rebuild membership task started" +msgstr "" + +#: ipaserver/plugins/automember.py:815 +#, python-format +msgid "Task DN = '%s'" +msgstr "" + +#: ipaserver/plugins/automember.py:828 +msgid "" +"\n" +" Search for orphan automember rules. The command might need to be run as\n" +" a privileged user user to get all orphan rules.\n" +" " +msgstr "" + +#: ipaserver/plugins/automember.py:835 +msgid "Remove orphan automember rules" +msgstr "" + +#: ipaserver/plugins/hbactest.py:39 ipaserver/plugins/cert.py:63 +msgid "pyhbac is not installed." msgstr "" #: ipaserver/plugins/hbactest.py:45 @@ -18326,11 +14972,2297 @@ msgstr "" msgid "Unresolved rules in --rules" msgstr "" +#: ipaserver/plugins/hbactest.py:402 ipaserver/plugins/group.py:607 +#: ipaserver/plugins/group.py:664 +msgid "" +"Cannot perform external member validation without Samba 4 support installed. " +"Make sure you have installed server-trust-ad sub-package of IPA on the server" +msgstr "" + +#: ipaserver/plugins/hbactest.py:408 ipaserver/plugins/trust.py:345 +msgid "" +"Cannot search in trusted domains without own domain configured. Make sure " +"you have run ipa-adtrust-install on the IPA server first" +msgstr "" + #: ipaserver/plugins/hbactest.py:497 #, python-format msgid "Access granted: %s" msgstr "" +#: ipaserver/plugins/host.py:76 +msgid "" +"\n" +"Hosts/Machines\n" +"\n" +"A host represents a machine. It can be used in a number of contexts:\n" +"- service entries are associated with a host\n" +"- a host stores the host/ service principal\n" +"- a host can be used in Host-based Access Control (HBAC) rules\n" +"- every enrolled client generates a host entry\n" +msgstr "" + +#: ipaserver/plugins/host.py:84 +msgid "" +"\n" +"ENROLLMENT:\n" +"\n" +"There are three enrollment scenarios when enrolling a new client:\n" +"\n" +"1. You are enrolling as a full administrator. The host entry may exist\n" +" or not. A full administrator is a member of the hostadmin role\n" +" or the admins group.\n" +"2. You are enrolling as a limited administrator. The host must already\n" +" exist. A limited administrator is a member a role with the\n" +" Host Enrollment privilege.\n" +"3. The host has been created with a one-time password.\n" +msgstr "" + +#: ipaserver/plugins/host.py:96 +msgid "" +"\n" +"RE-ENROLLMENT:\n" +"\n" +"Host that has been enrolled at some point, and lost its configuration (e.g. " +"VM\n" +"destroyed) can be re-enrolled.\n" +"\n" +"For more information, consult the manual pages for ipa-client-install.\n" +"\n" +"A host can optionally store information such as where it is located,\n" +"the OS that it runs, etc.\n" +msgstr "" + +#: ipaserver/plugins/host.py:108 +msgid "" +"\n" +" Add a new host:\n" +" ipa host-add --location=\"3rd floor lab\" --locality=Dallas test.example." +"com\n" +msgstr "" + +#: ipaserver/plugins/host.py:111 +msgid "" +"\n" +" Delete a host:\n" +" ipa host-del test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:114 +msgid "" +"\n" +" Add a new host with a one-time password:\n" +" ipa host-add --os='Fedora 12' --password=Secret123 test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:117 +msgid "" +"\n" +" Add a new host with a random one-time password:\n" +" ipa host-add --os='Fedora 12' --random test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:120 +msgid "" +"\n" +" Modify information about a host:\n" +" ipa host-mod --os='Fedora 12' test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:123 +msgid "" +"\n" +" Remove SSH public keys of a host and update DNS to reflect this change:\n" +" ipa host-mod --sshpubkey= --updatedns test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:126 +msgid "" +"\n" +" Disable the host Kerberos key, SSL certificate and all of its services:\n" +" ipa host-disable test.example.com\n" +msgstr "" + +#: ipaserver/plugins/host.py:129 +msgid "" +"\n" +" Add a host that can manage this host's keytab and certificate:\n" +" ipa host-add-managedby --hosts=test2 test\n" +msgstr "" + +#: ipaserver/plugins/host.py:132 +msgid "" +"\n" +" Allow user to create a keytab:\n" +" ipa host-allow-create-keytab test2 --users=tuser1\n" +msgstr "" + +#: ipaserver/plugins/host.py:211 ipaclient/frontend.py:76 +msgid "Failed managedby" +msgstr "" + +#: ipaserver/plugins/host.py:463 ipaclient/remote_plugins/2_114/host.py:95 +msgid "A description of this host" +msgstr "" + +#: ipaserver/plugins/host.py:467 ipaclient/remote_plugins/2_114/host.py:100 +msgid "Locality" +msgstr "" + +#: ipaserver/plugins/host.py:468 ipaclient/remote_plugins/2_114/host.py:101 +msgid "Host locality (e.g. \"Baltimore, MD\")" +msgstr "" + +#: ipaserver/plugins/host.py:473 ipaclient/remote_plugins/2_114/host.py:107 +msgid "Host location (e.g. \"Lab 2\")" +msgstr "" + +#: ipaserver/plugins/host.py:477 ipaclient/remote_plugins/2_114/host.py:112 +msgid "Platform" +msgstr "" + +#: ipaserver/plugins/host.py:478 ipaclient/remote_plugins/2_114/host.py:113 +msgid "Host hardware platform (e.g. \"Lenovo T61\")" +msgstr "" + +#: ipaserver/plugins/host.py:482 ipaclient/remote_plugins/2_114/host.py:118 +msgid "Operating system" +msgstr "" + +#: ipaserver/plugins/host.py:483 ipaclient/remote_plugins/2_114/host.py:119 +msgid "Host operating system and version (e.g. \"Fedora 9\")" +msgstr "" + +#: ipaserver/plugins/host.py:487 ipaclient/remote_plugins/2_114/host.py:124 +msgid "User password" +msgstr "" + +#: ipaserver/plugins/host.py:488 ipaclient/remote_plugins/2_114/host.py:125 +msgid "Password used in bulk enrollment" +msgstr "" + +#: ipaserver/plugins/host.py:492 ipaclient/remote_plugins/2_114/host.py:130 +msgid "Generate a random password to be used in bulk enrollment" +msgstr "" + +#: ipaserver/plugins/host.py:497 ipaserver/plugins/baseuser.py:289 +msgid "Random password" +msgstr "" + +#: ipaserver/plugins/host.py:503 +msgid "Base-64 encoded host certificate" +msgstr "" + +#: ipaserver/plugins/host.py:560 ipaclient/remote_plugins/2_114/host.py:152 +msgid "MAC address" +msgstr "" + +#: ipaserver/plugins/host.py:561 ipaclient/remote_plugins/2_114/host.py:153 +msgid "Hardware MAC address(es) on this host" +msgstr "" + +#: ipaserver/plugins/host.py:570 ipaserver/plugins/baseuser.py:353 +msgid "SSH public key fingerprint" +msgstr "" + +#: ipaserver/plugins/host.py:575 ipaserver/plugins/baseuser.py:365 +msgid "Class" +msgstr "" + +#: ipaserver/plugins/host.py:576 ipaclient/remote_plugins/2_114/host.py:166 +msgid "" +"Host category (semantics placed on this attribute are for local " +"interpretation)" +msgstr "" + +#: ipaserver/plugins/host.py:654 ipaclient/remote_plugins/2_114/host.py:288 +msgid "Add a new host." +msgstr "" + +#: ipaserver/plugins/host.py:657 +#, python-format +msgid "Added host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:662 ipaclient/remote_plugins/2_114/host.py:416 +msgid "force host name even if not in DNS" +msgstr "" + +#: ipaserver/plugins/host.py:665 ipaclient/remote_plugins/2_114/host.py:422 +msgid "skip reverse DNS detection" +msgstr "" + +#: ipaserver/plugins/host.py:668 ipaclient/remote_plugins/2_114/host.py:430 +msgid "Add the host to DNS with this IP address" +msgstr "" + +#: ipaserver/plugins/host.py:777 ipaclient/remote_plugins/2_114/host.py:709 +msgid "Delete a host." +msgstr "" + +#: ipaserver/plugins/host.py:779 +#, python-format +msgid "Deleted host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:784 +msgid "Remove A, AAAA, SSHFP and PTR records of the host(s) managed by IPA DNS" +msgstr "" + +#: ipaserver/plugins/host.py:863 +msgid "No A, AAAA, SSHFP or PTR records found." +msgstr "" + +#: ipaserver/plugins/host.py:876 ipaclient/remote_plugins/2_114/host.py:1244 +msgid "Modify information about a host." +msgstr "" + +#: ipaserver/plugins/host.py:879 +#, python-format +msgid "Modified host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:884 ipaclient/remote_plugins/2_114/host.py:1393 +msgid "Update DNS entries" +msgstr "" + +#: ipaserver/plugins/host.py:899 +msgid "Password cannot be set on enrolled host." +msgstr "" + +#: ipaserver/plugins/host.py:903 +msgid "cn is immutable" +msgstr "" + +#: ipaserver/plugins/host.py:1023 ipaclient/remote_plugins/2_114/host.py:962 +msgid "Search for hosts." +msgstr "" + +#: ipaserver/plugins/host.py:1027 +#, python-format +msgid "%(count)d host matched" +msgid_plural "%(count)d hosts matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/host.py:1124 ipaclient/remote_plugins/2_114/host.py:1498 +msgid "Display information about a host." +msgstr "" + +#: ipaserver/plugins/host.py:1179 ipaclient/remote_plugins/2_114/host.py:754 +msgid "Disable the Kerberos key, SSL certificate and all services of a host." +msgstr "" + +#: ipaserver/plugins/host.py:1182 +#, python-format +msgid "Disabled host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:1255 ipaclient/remote_plugins/2_114/host.py:472 +msgid "Add hosts that can manage this host." +msgstr "" + +#: ipaserver/plugins/host.py:1269 ipaclient/remote_plugins/2_114/host.py:1437 +msgid "Remove hosts that can manage this host." +msgstr "" + +#: ipaserver/plugins/host.py:1282 ipaclient/remote_plugins/2_114/host.py:621 +msgid "" +"Allow users, groups, hosts or host groups to retrieve a keytab of this host." +msgstr "" + +#: ipaserver/plugins/host.py:1301 ipaclient/remote_plugins/2_114/host.py:874 +msgid "" +"Disallow users, groups, hosts or host groups to retrieve a keytab of this " +"host." +msgstr "" + +#: ipaserver/plugins/host.py:1319 ipaclient/remote_plugins/2_114/host.py:533 +msgid "" +"Allow users, groups, hosts or host groups to create a keytab of this host." +msgstr "" + +#: ipaserver/plugins/host.py:1338 ipaclient/remote_plugins/2_114/host.py:786 +msgid "" +"Disallow users, groups, hosts or host groups to create a keytab of this host." +msgstr "" + +#: ipaserver/plugins/host.py:1356 ipaclient/remote_plugins/2_156/host.py:474 +msgid "Add certificates to host entry" +msgstr "" + +#: ipaserver/plugins/host.py:1357 +#, python-format +msgid "Added certificates to host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:1363 ipaclient/remote_plugins/2_156/host.py:1501 +msgid "Remove certificates from host entry" +msgstr "" + +#: ipaserver/plugins/host.py:1364 +#, python-format +msgid "Removed certificates from host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:1380 +msgid "Add new principal alias to host entry" +msgstr "" + +#: ipaserver/plugins/host.py:1381 +#, python-format +msgid "Added new aliases to host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/host.py:1392 +msgid "Remove principal alias from a host entry" +msgstr "" + +#: ipaserver/plugins/host.py:1393 +#, python-format +msgid "Removed aliases from host \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:35 +msgid "" +"\n" +"Groups of hosts.\n" +"\n" +"Manage groups of hosts. This is useful for applying access control to a\n" +"number of hosts by using Host-based Access Control.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new host group:\n" +" ipa hostgroup-add --desc=\"Baltimore hosts\" baltimore\n" +"\n" +" Add another new host group:\n" +" ipa hostgroup-add --desc=\"Maryland hosts\" maryland\n" +"\n" +" Add members to the hostgroup (using Bash brace expansion):\n" +" ipa hostgroup-add-member --hosts={box1,box2,box3} baltimore\n" +"\n" +" Add a hostgroup as a member of another hostgroup:\n" +" ipa hostgroup-add-member --hostgroups=baltimore maryland\n" +"\n" +" Remove a host from the hostgroup:\n" +" ipa hostgroup-remove-member --hosts=box2 baltimore\n" +"\n" +" Display a host group:\n" +" ipa hostgroup-show baltimore\n" +"\n" +" Add a member manager:\n" +" ipa hostgroup-add-member-manager --users=user1 baltimore\n" +"\n" +" Remove a member manager\n" +" ipa hostgroup-remove-member-manager --users=user1 baltimore\n" +"\n" +" Delete a hostgroup:\n" +" ipa hostgroup-del baltimore\n" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:95 ipaserver/plugins/group.py:182 +#: ipaclient/frontend.py:71 +msgid "Failed member manager" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:106 +msgid "host group" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:107 +msgid "host groups" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:179 +msgid "Host Group" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:186 +msgid "Host-group" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:187 +msgid "Name of host-group" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:194 +msgid "A description of this host-group" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:220 +msgid "Add a new hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:223 +#, python-format +msgid "Added hostgroup \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:239 +#, python-format +msgid "" +"netgroup with name \"%s\" already exists. Hostgroups and netgroups share a " +"common namespace" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:260 +msgid "Delete a hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:262 +#, python-format +msgid "Deleted hostgroup \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:266 ipaserver/plugins/hostgroup.py:284 +#: ipaserver/plugins/hostgroup.py:349 +msgid "hostgroup" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:268 ipaserver/plugins/hostgroup.py:286 +msgid "privileged hostgroup" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:275 +msgid "Modify a hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:278 +#, python-format +msgid "Modified hostgroup \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/hostgroup.py:298 +msgid "Search for hostgroups." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:303 +#, python-format +msgid "%(count)d hostgroup matched" +msgid_plural "%(count)d hostgroups matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/hostgroup.py:316 +msgid "Display information about a hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:330 +msgid "Add members to a hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:340 +msgid "Remove members from a hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:362 +msgid "Add users that can manage members of this hostgroup." +msgstr "" + +#: ipaserver/plugins/hostgroup.py:372 +msgid "Remove users that can manage members of this hostgroup." +msgstr "" + +#: ipaserver/plugins/schema.py:30 +msgid "" +"\n" +"API Schema\n" +msgstr "" + +#: ipaserver/plugins/schema.py:32 +msgid "" +"\n" +"Provides API introspection capabilities.\n" +msgstr "" + +#: ipaserver/plugins/schema.py:36 +msgid "" +"\n" +" Show user-find details:\n" +" ipa command-show user-find\n" +msgstr "" + +#: ipaserver/plugins/schema.py:39 +msgid "" +"\n" +" Find user-find parameters:\n" +" ipa param-find user-find\n" +msgstr "" + +#: ipaserver/plugins/schema.py:60 +msgid "Documentation" +msgstr "" + +#: ipaserver/plugins/schema.py:65 +msgid "Exclude from" +msgstr "" + +#: ipaserver/plugins/schema.py:70 +msgid "Include in" +msgstr "" + +#: ipaserver/plugins/schema.py:127 ipaserver/plugins/baseldap.py:1873 +#: ipaserver/plugins/cert.py:1561 ipaclient/remote_plugins/2_114/aci.py:474 +msgid "Primary key only" +msgstr "" + +#: ipaserver/plugins/schema.py:128 ipaserver/plugins/baseldap.py:1874 +#, python-format +msgid "Results should contain primary key attribute only (\"%s\")" +msgstr "" + +#: ipaserver/plugins/schema.py:141 +msgid "Help topic" +msgstr "" + +#: ipaserver/plugins/schema.py:158 ipaserver/plugins/baseuser.py:219 +msgid "Full name" +msgstr "" + +#: ipaserver/plugins/schema.py:178 +msgid "Parameters" +msgstr "" + +#: ipaserver/plugins/schema.py:213 +msgid "Method of" +msgstr "" + +#: ipaserver/plugins/schema.py:218 +msgid "Method name" +msgstr "" + +#: ipaserver/plugins/schema.py:263 ipaserver/plugins/schema.py:332 +#: ipaserver/plugins/schema.py:423 ipaserver/plugins/schema.py:658 +#: ipaserver/plugins/schema.py:751 ipaserver/plugins/baseldap.py:583 +#, python-format +msgid "%(pkey)s: %(oname)s not found" +msgstr "" + +#: ipaserver/plugins/schema.py:276 +msgid "Display information about a command." +msgstr "" + +#: ipaserver/plugins/schema.py:281 +msgid "Search for commands." +msgstr "" + +#: ipaserver/plugins/schema.py:286 +msgid "Return command defaults" +msgstr "" + +#: ipaserver/plugins/schema.py:343 +msgid "Display information about a class." +msgstr "" + +#: ipaserver/plugins/schema.py:348 +msgid "Search for classes." +msgstr "" + +#: ipaserver/plugins/schema.py:435 +msgid "Display information about a help topic." +msgstr "" + +#: ipaserver/plugins/schema.py:440 +msgid "Search for help topics." +msgstr "" + +#: ipaserver/plugins/schema.py:452 +msgid "Required" +msgstr "" + +#: ipaserver/plugins/schema.py:457 +msgid "Multi-value" +msgstr "" + +#: ipaserver/plugins/schema.py:505 +msgid "Always ask" +msgstr "" + +#: ipaserver/plugins/schema.py:510 +msgid "CLI metavar" +msgstr "" + +#: ipaserver/plugins/schema.py:515 +msgid "CLI name" +msgstr "" + +#: ipaserver/plugins/schema.py:520 +msgid "Confirm (password)" +msgstr "" + +#: ipaserver/plugins/schema.py:525 +msgid "Default" +msgstr "" + +#: ipaserver/plugins/schema.py:530 +msgid "Default from" +msgstr "" + +#: ipaserver/plugins/schema.py:535 +msgid "Label" +msgstr "" + +#: ipaserver/plugins/schema.py:540 +msgid "Convert on server" +msgstr "" + +#: ipaserver/plugins/schema.py:545 +msgid "Option group" +msgstr "" + +#: ipaserver/plugins/schema.py:550 +msgid "Sensitive" +msgstr "" + +#: ipaserver/plugins/schema.py:555 +msgid "Positional argument" +msgstr "" + +#: ipaserver/plugins/schema.py:640 +#, python-format +msgid "%(metaobject)s: %(oname)s not found" +msgstr "" + +#: ipaserver/plugins/schema.py:679 +msgid "Display information about a command parameter." +msgstr "" + +#: ipaserver/plugins/schema.py:684 +msgid "Search command parameters." +msgstr "" + +#: ipaserver/plugins/schema.py:741 +#, python-format +msgid "%(command_name)s: %(oname)s not found" +msgstr "" + +#: ipaserver/plugins/schema.py:766 +msgid "Display information about a command output." +msgstr "" + +#: ipaserver/plugins/schema.py:771 +msgid "Search for command outputs." +msgstr "" + +#: ipaserver/plugins/schema.py:776 +msgid "Store and provide schema for commands and topics" +msgstr "" + +#: ipaserver/plugins/schema.py:782 +msgid "Fingerprint of schema cached by client" +msgstr "" + +#: ipaserver/plugins/config.py:41 +msgid "" +"\n" +"Server configuration\n" +"\n" +"Manage the default values that IPA uses and some of its tuning parameters.\n" +"\n" +"NOTES:\n" +"\n" +"The password notification value (--pwdexpnotify) is stored here so it will\n" +"be replicated. It is not currently used to notify users in advance of an\n" +"expiring password.\n" +"\n" +"Some attributes are read-only, provided only for information purposes. " +"These\n" +"include:\n" +"\n" +"Certificate Subject base: the configured certificate subject base,\n" +" e.g. O=EXAMPLE.COM. This is configurable only at install time.\n" +"Password plug-in features: currently defines additional hashes that the\n" +" password will generate (there may be other conditions).\n" +"\n" +"When setting the order list for mapping SELinux users you may need to\n" +"quote the value so it isn't interpreted by the shell.\n" +"\n" +"The maximum length of a hostname in Linux is controlled by\n" +"MAXHOSTNAMELEN in the kernel and defaults to 64. Some other operating\n" +"systems, Solaris for example, allows hostnames up to 255 characters.\n" +"This option will allow flexibility in length but by default limiting\n" +"to the Linux maximum length.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Show basic server configuration:\n" +" ipa config-show\n" +"\n" +" Show all configuration options:\n" +" ipa config-show --all\n" +"\n" +" Change maximum username length to 99 characters:\n" +" ipa config-mod --maxusername=99\n" +"\n" +" Change maximum host name length to 255 characters:\n" +" ipa config-mod --maxhostname=255\n" +"\n" +" Increase default time and size limits for maximum IPA server search:\n" +" ipa config-mod --searchtimelimit=10 --searchrecordslimit=2000\n" +"\n" +" Set default user e-mail domain:\n" +" ipa config-mod --emaildomain=example.com\n" +"\n" +" Enable migration mode to make \"ipa migrate-ds\" command operational:\n" +" ipa config-mod --enable-migration=TRUE\n" +"\n" +" Define SELinux user map order:\n" +" ipa config-mod --ipaselinuxusermaporder='guest_u:s0$xguest_u:s0$user_u:s0-" +"s0:c0.c1023$staff_u:s0-s0:c0.c1023$unconfined_u:s0-s0:c0.c1023'\n" +msgstr "" + +#: ipaserver/plugins/config.py:107 +msgid "must be at least 10" +msgstr "" + +#: ipaserver/plugins/config.py:115 +msgid "configuration options" +msgstr "" + +#: ipaserver/plugins/config.py:150 ipaserver/plugins/config.py:151 +msgid "Configuration" +msgstr "" + +#: ipaserver/plugins/config.py:156 ipaclient/remote_plugins/2_114/config.py:73 +msgid "Maximum username length" +msgstr "" + +#: ipaserver/plugins/config.py:162 +msgid "Maximum hostname length" +msgstr "" + +#: ipaserver/plugins/config.py:167 ipaclient/remote_plugins/2_114/config.py:77 +msgid "Home directory base" +msgstr "" + +#: ipaserver/plugins/config.py:168 ipaclient/remote_plugins/2_114/config.py:78 +msgid "Default location of home directories" +msgstr "" + +#: ipaserver/plugins/config.py:172 ipaclient/remote_plugins/2_114/config.py:82 +msgid "Default shell" +msgstr "" + +#: ipaserver/plugins/config.py:173 ipaclient/remote_plugins/2_114/config.py:83 +msgid "Default shell for new users" +msgstr "" + +#: ipaserver/plugins/config.py:177 ipaclient/remote_plugins/2_114/config.py:87 +msgid "Default users group" +msgstr "" + +#: ipaserver/plugins/config.py:178 ipaclient/remote_plugins/2_114/config.py:88 +msgid "Default group for new users" +msgstr "" + +#: ipaserver/plugins/config.py:182 ipaserver/plugins/config.py:183 +msgid "Default e-mail domain" +msgstr "" + +#: ipaserver/plugins/config.py:187 ipaclient/remote_plugins/2_114/config.py:97 +msgid "Search time limit" +msgstr "" + +#: ipaserver/plugins/config.py:188 ipaclient/remote_plugins/2_156/config.py:98 +msgid "Maximum amount of time (seconds) for a search (-1 or 0 is unlimited)" +msgstr "" + +#: ipaserver/plugins/config.py:194 ipaclient/remote_plugins/2_114/config.py:102 +msgid "Search size limit" +msgstr "" + +#: ipaserver/plugins/config.py:195 ipaclient/remote_plugins/2_156/config.py:103 +msgid "Maximum number of records to search (-1 or 0 is unlimited)" +msgstr "" + +#: ipaserver/plugins/config.py:199 ipaclient/remote_plugins/2_114/config.py:107 +msgid "User search fields" +msgstr "" + +#: ipaserver/plugins/config.py:200 ipaclient/remote_plugins/2_114/config.py:108 +msgid "A comma-separated list of fields to search in when searching for users" +msgstr "" + +#: ipaserver/plugins/config.py:204 ipaclient/remote_plugins/2_114/config.py:112 +msgid "Group search fields" +msgstr "" + +#: ipaserver/plugins/config.py:205 ipaclient/remote_plugins/2_114/config.py:113 +msgid "A comma-separated list of fields to search in when searching for groups" +msgstr "" + +#: ipaserver/plugins/config.py:209 ipaserver/plugins/config.py:210 +msgid "Enable migration mode" +msgstr "" + +#: ipaserver/plugins/config.py:214 ipaclient/remote_plugins/2_114/config.py:121 +msgid "Certificate Subject base" +msgstr "" + +#: ipaserver/plugins/config.py:215 ipaclient/remote_plugins/2_114/config.py:122 +msgid "Base for certificate subjects (OU=Test,O=Example)" +msgstr "" + +#: ipaserver/plugins/config.py:220 ipaclient/remote_plugins/2_114/config.py:127 +msgid "Default group objectclasses" +msgstr "" + +#: ipaserver/plugins/config.py:221 ipaclient/remote_plugins/2_114/config.py:128 +msgid "Default group objectclasses (comma-separated list)" +msgstr "" + +#: ipaserver/plugins/config.py:225 ipaclient/remote_plugins/2_114/config.py:133 +msgid "Default user objectclasses" +msgstr "" + +#: ipaserver/plugins/config.py:226 ipaclient/remote_plugins/2_114/config.py:134 +msgid "Default user objectclasses (comma-separated list)" +msgstr "" + +#: ipaserver/plugins/config.py:230 ipaclient/remote_plugins/2_114/config.py:138 +msgid "Password Expiration Notification (days)" +msgstr "" + +#: ipaserver/plugins/config.py:231 ipaclient/remote_plugins/2_114/config.py:139 +msgid "Number of days's notice of impending password expiration" +msgstr "" + +#: ipaserver/plugins/config.py:236 ipaclient/remote_plugins/2_114/config.py:145 +msgid "Password plugin features" +msgstr "" + +#: ipaserver/plugins/config.py:237 ipaclient/remote_plugins/2_114/config.py:146 +msgid "Extra hashes to generate in password plug-in" +msgstr "" + +#: ipaserver/plugins/config.py:243 ipaclient/remote_plugins/2_114/config.py:150 +msgid "SELinux user map order" +msgstr "" + +#: ipaserver/plugins/config.py:244 ipaclient/remote_plugins/2_114/config.py:151 +msgid "Order in increasing priority of SELinux users, delimited by $" +msgstr "" + +#: ipaserver/plugins/config.py:247 ipaclient/remote_plugins/2_114/config.py:156 +msgid "Default SELinux user" +msgstr "" + +#: ipaserver/plugins/config.py:248 ipaclient/remote_plugins/2_114/config.py:157 +msgid "Default SELinux user when no match is found in SELinux map rule" +msgstr "" + +#: ipaserver/plugins/config.py:252 ipaclient/remote_plugins/2_114/config.py:163 +msgid "Default PAC types" +msgstr "" + +#: ipaserver/plugins/config.py:253 ipaclient/remote_plugins/2_114/config.py:164 +msgid "Default types of PAC supported for services" +msgstr "" + +#: ipaserver/plugins/config.py:259 ipaclient/remote_plugins/2_114/config.py:170 +msgid "Default user authentication types" +msgstr "" + +#: ipaserver/plugins/config.py:260 ipaclient/remote_plugins/2_114/config.py:171 +msgid "Default types of supported user authentication" +msgstr "" + +#: ipaserver/plugins/config.py:266 +msgid "IPA masters" +msgstr "" + +#: ipaserver/plugins/config.py:267 +msgid "List of all IPA masters" +msgstr "" + +#: ipaserver/plugins/config.py:272 +msgid "Hidden IPA masters" +msgstr "" + +#: ipaserver/plugins/config.py:273 +msgid "List of all hidden IPA masters" +msgstr "" + +#: ipaserver/plugins/config.py:278 +msgid "IPA master capable of PKINIT" +msgstr "" + +#: ipaserver/plugins/config.py:279 +msgid "IPA master which can process PKINIT requests" +msgstr "" + +#: ipaserver/plugins/config.py:284 +msgid "IPA CA servers" +msgstr "" + +#: ipaserver/plugins/config.py:285 +msgid "IPA servers configured as certificate authority" +msgstr "" + +#: ipaserver/plugins/config.py:290 +msgid "Hidden IPA CA servers" +msgstr "" + +#: ipaserver/plugins/config.py:291 +msgid "Hidden IPA servers configured as certificate authority" +msgstr "" + +#: ipaserver/plugins/config.py:296 +msgid "IPA CA renewal master" +msgstr "" + +#: ipaserver/plugins/config.py:297 +msgid "Renewal master for IPA certificate authority" +msgstr "" + +#: ipaserver/plugins/config.py:303 +msgid "IPA servers configured as key recovery agent" +msgstr "" + +#: ipaserver/plugins/config.py:308 +msgid "Hidden IPA KRA servers" +msgstr "" + +#: ipaserver/plugins/config.py:309 +msgid "Hidden IPA servers configured as key recovery agent" +msgstr "" + +#: ipaserver/plugins/config.py:322 +msgid "IPA servers configured as domain name server" +msgstr "" + +#: ipaserver/plugins/config.py:327 +msgid "Hidden IPA DNS servers" +msgstr "" + +#: ipaserver/plugins/config.py:328 +msgid "Hidden IPA servers configured as domain name server" +msgstr "" + +#: ipaserver/plugins/config.py:334 +msgid "DNSec key master" +msgstr "" + +#: ipaserver/plugins/config.py:411 +msgid "Empty domain is not allowed" +msgstr "" + +#: ipaserver/plugins/config.py:419 +#, python-format +msgid "Invalid domain name '%(domain)s': %(e)s" +msgstr "" + +#: ipaserver/plugins/config.py:424 +#, python-format +msgid "Server has no information about domain '%(domain)s'" +msgstr "" + +#: ipaserver/plugins/config.py:431 +#, python-format +msgid "Disabled domain '%(domain)s' is not allowed" +msgstr "" + +#: ipaserver/plugins/config.py:474 ipaclient/remote_plugins/2_114/config.py:178 +msgid "Modify configuration options." +msgstr "" + +#: ipaserver/plugins/config.py:483 +msgid "The group doesn't exist" +msgstr "" + +#: ipaserver/plugins/config.py:501 +#, python-format +msgid "attribute \"%s\" not allowed" +msgstr "" + +#: ipaserver/plugins/config.py:521 +msgid "May not be empty" +msgstr "" + +#: ipaserver/plugins/config.py:540 +#, python-format +msgid "%(obj)s default attribute %(attr)s would not be allowed!" +msgstr "" + +#: ipaserver/plugins/config.py:572 +msgid "A list of SELinux users delimited by $ expected" +msgstr "" + +#: ipaserver/plugins/config.py:576 +#, python-format +msgid "SELinux user '%(user)s' is not valid: %(error)s" +msgstr "" + +#: ipaserver/plugins/config.py:588 +msgid "SELinux user map default user not in order list" +msgstr "" + +#: ipaserver/plugins/config.py:624 ipaclient/remote_plugins/2_114/config.py:370 +msgid "Show the current configuration." +msgstr "" + +#: ipaserver/plugins/session.py:12 +msgid "" +"\n" +"Session Support for IPA\n" +msgstr "" + +#: ipaserver/plugins/session.py:23 +msgid "RPC command used to log the current user out of their session." +msgstr "" + +#: ipaserver/plugins/otp.py:7 +msgid "One time password commands" +msgstr "" + +#: ipaserver/plugins/whoami.py:15 +msgid "" +"\n" +"Return information about currently authenticated identity\n" +"\n" +"Who am I command returns information on how to get\n" +"more details about the identity authenticated for this\n" +"request. The information includes:\n" +"\n" +" * type of object\n" +" * command to retrieve details of the object\n" +" * arguments and options to pass to the command\n" +"\n" +"The information is returned as a dictionary. Examples below use\n" +"'key: value' output for illustrative purposes.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Look up as IPA user:\n" +" kinit admin\n" +" ipa console\n" +" >> api.Command.whoami()\n" +" ------------------------------------------\n" +" object: user\n" +" command: user_show/1\n" +" arguments: admin\n" +" ------------------------------------------\n" +"\n" +" Look up as a user from a trusted domain:\n" +" kinit user@AD.DOMAIN\n" +" ipa console\n" +" >> api.Command.whoami()\n" +" ------------------------------------------\n" +" object: idoverrideuser\n" +" command: idoverrideuser_show/1\n" +" arguments: ('default trust view', 'user@ad.domain')\n" +" ------------------------------------------\n" +"\n" +" Look up as a host:\n" +" kinit -k\n" +" ipa console\n" +" >> api.Command.whoami()\n" +" ------------------------------------------\n" +" object: host\n" +" command: host_show/1\n" +" arguments: ipa.example.com\n" +" ------------------------------------------\n" +"\n" +" Look up as a Kerberos service:\n" +" kinit -k -t /path/to/keytab HTTP/ipa.example.com\n" +" ipa console\n" +" >> api.Command.whoami()\n" +" ------------------------------------------\n" +" object: service\n" +" command: service_show/1\n" +" arguments: HTTP/ipa.example.com\n" +" ------------------------------------------\n" +msgstr "" + +#: ipaserver/plugins/whoami.py:77 +msgid "Describe currently authenticated identity." +msgstr "" + +#: ipaserver/plugins/whoami.py:82 ipaserver/plugins/whoami.py:88 +msgid "Object class name" +msgstr "" + +#: ipaserver/plugins/whoami.py:83 ipaserver/plugins/whoami.py:89 +msgid "Function to get details" +msgstr "" + +#: ipaserver/plugins/whoami.py:84 ipaserver/plugins/whoami.py:91 +msgid "Arguments to details function" +msgstr "" + +#: ipaserver/plugins/whoami.py:111 +msgid "Cannot query Directory Manager with API" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:34 +msgid "" +"\n" +"Realm domains\n" +"\n" +"Manage the list of domains associated with IPA realm.\n" +"\n" +"This list is useful for Domain Controllers from other realms which have\n" +"established trust with this IPA realm. They need the information to know\n" +"which request should be forwarded to KDC of this IPA realm.\n" +"\n" +"Automatic management: a domain is automatically added to the realm domains\n" +"list when a new DNS Zone managed by IPA is created. Same applies for " +"deletion.\n" +"\n" +"Externally managed DNS: domains which are not managed in IPA server DNS\n" +"need to be manually added to the list using ipa realmdomains-mod command.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Display the current list of realm domains:\n" +" ipa realmdomains-show\n" +"\n" +" Replace the list of realm domains:\n" +" ipa realmdomains-mod --domain=example.com\n" +" ipa realmdomains-mod --domain={example1.com,example2.com,example3.com}\n" +"\n" +" Add a domain to the list of realm domains:\n" +" ipa realmdomains-mod --add-domain=newdomain.com\n" +"\n" +" Delete a domain from the list of realm domains:\n" +" ipa realmdomains-mod --del-domain=olddomain.com\n" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:85 +msgid "Realm domains" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:121 +msgid "Add domain" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:127 +msgid "Delete domain" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:134 +msgid "" +"\n" +" Modify realm domains\n" +"\n" +" DNS check: When manually adding a domain to the list, a DNS check is\n" +" performed by default. It ensures that the domain is associated with\n" +" the IPA realm, by checking whether the domain has a _kerberos TXT " +"record\n" +" containing the IPA realm name. This check can be skipped by specifying\n" +" --force option.\n" +"\n" +" Removal: when a realm domain which has a matching DNS zone managed by\n" +" IPA is being removed, a corresponding _kerberos TXT record in the zone " +"is\n" +" removed automatically as well. Other records in the zone or the zone\n" +" itself are not affected.\n" +" " +msgstr "" + +#: ipaserver/plugins/realmdomains.py:152 +msgid "Force adding domain even if not in DNS" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:177 +#, python-format +msgid "" +"DNS zone for each realmdomain must contain SOA or NS records. No records " +"found for: %s" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:203 +#, python-format +msgid "The following domains do not belong to this realm: %(domains)s" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:218 +#, python-format +msgid "" +"The realm of the following domains could not be detected: %(domains)s. If " +"these are domains that belong to the this realm, please create a _kerberos " +"TXT record containing \"%(realm)s\" in each of them." +msgstr "" + +#: ipaserver/plugins/realmdomains.py:241 +msgid "" +"The --domain option cannot be used together with --add-domain or --del-" +"domain. Use --domain to specify the whole realm domain list explicitly, to " +"add/remove individual domains, use --add-domain/del-domain." +msgstr "" + +#: ipaserver/plugins/realmdomains.py:252 +msgid "IPA server domain cannot be omitted" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:274 +msgid "IPA server domain cannot be deleted" +msgstr "" + +#: ipaserver/plugins/realmdomains.py:361 +msgid "Display the list of realm domains." +msgstr "" + +#: ipaserver/plugins/idrange.py:43 +msgid "" +"=======\n" +"WARNING:\n" +"\n" +"DNA plugin in 389-ds will allocate IDs based on the ranges configured for " +"the\n" +"local domain. Currently the DNA plugin *cannot* be reconfigured itself " +"based\n" +"on the local ranges set via this family of commands.\n" +"\n" +"Manual configuration change has to be done in the DNA plugin configuration " +"for\n" +"the new local range. Specifically, The dnaNextRange attribute of 'cn=Posix\n" +"IDs,cn=Distributed Numeric Assignment Plugin,cn=plugins,cn=config' has to " +"be\n" +"modified to match the new range.\n" +"=======\n" +msgstr "" + +#: ipaserver/plugins/idrange.py:57 +msgid "" +"\n" +"ID ranges\n" +"\n" +"Manage ID ranges used to map Posix IDs to SIDs and back.\n" +"\n" +"There are two type of ID ranges which are both handled by this utility:\n" +"\n" +" - the ID ranges of the local domain\n" +" - the ID ranges of trusted remote domains\n" +"\n" +"Both types have the following attributes in common:\n" +"\n" +" - base-id: the first ID of the Posix ID range\n" +" - range-size: the size of the range\n" +"\n" +"With those two attributes a range object can reserve the Posix IDs starting\n" +"with base-id up to but not including base-id+range-size exclusively.\n" +"\n" +"Additionally an ID range of the local domain may set\n" +" - rid-base: the first RID(*) of the corresponding RID range\n" +" - secondary-rid-base: first RID of the secondary RID range\n" +"\n" +"and an ID range of a trusted domain must set\n" +" - rid-base: the first RID of the corresponding RID range\n" +" - sid: domain SID of the trusted domain\n" +"\n" +"\n" +"\n" +"EXAMPLE: Add a new ID range for a trusted domain\n" +"\n" +"Since there might be more than one trusted domain the domain SID must be " +"given\n" +"while creating the ID range.\n" +"\n" +" ipa idrange-add --base-id=1200000 --range-size=200000 --rid-base=0 \\\n" +" --dom-sid=S-1-5-21-123-456-789 trusted_dom_range\n" +"\n" +"This ID range is then used by the IPA server and the SSSD IPA provider to\n" +"assign Posix UIDs to users from the trusted domain.\n" +"\n" +"If e.g. a range for a trusted domain is configured with the following " +"values:\n" +" base-id = 1200000\n" +" range-size = 200000\n" +" rid-base = 0\n" +"the RIDs 0 to 199999 are mapped to the Posix ID from 1200000 to 13999999. " +"So\n" +"RID 1000 <-> Posix ID 1201000\n" +"\n" +"\n" +"\n" +"EXAMPLE: Add a new ID range for the local domain\n" +"\n" +"To create an ID range for the local domain it is not necessary to specify a\n" +"domain SID. But since it is possible that a user and a group can have the " +"same\n" +"value as Posix ID a second RID interval is needed to handle conflicts.\n" +"\n" +" ipa idrange-add --base-id=1200000 --range-size=200000 --rid-base=1000 \\\n" +" --secondary-rid-base=1000000 local_range\n" +"\n" +"The data from the ID ranges of the local domain are used by the IPA server\n" +"internally to assign SIDs to IPA users and groups. The SID will then be " +"stored\n" +"in the user or group objects.\n" +"\n" +"If e.g. the ID range for the local domain is configured with the values " +"from\n" +"the example above then a new user with the UID 1200007 will get the RID " +"1007.\n" +"If this RID is already used by a group the RID will be 1000007. This can " +"only\n" +"happen if a user or a group object was created with a fixed ID because the\n" +"automatic assignment will not assign the same ID twice. Since there are " +"only\n" +"users and groups sharing the same ID namespace it is sufficient to have " +"only\n" +"one fallback range to handle conflicts.\n" +"\n" +"To find the Posix ID for a given RID from the local domain it has to be\n" +"checked first if the RID falls in the primary or secondary RID range and\n" +"the rid-base or the secondary-rid-base has to be subtracted, respectively,\n" +"and the base-id has to be added to get the Posix ID.\n" +"\n" +"Typically the creation of ID ranges happens behind the scenes and this CLI\n" +"must not be used at all. The ID range for the local domain will be created\n" +"during installation or upgrade from an older version. The ID range for a\n" +"trusted domain will be created together with the trust by 'ipa trust-" +"add ...'.\n" +"\n" +"USE CASES:\n" +"\n" +" Add an ID range from a transitively trusted domain\n" +"\n" +" If the trusted domain (A) trusts another domain (B) as well and this " +"trust\n" +" is transitive 'ipa trust-add domain-A' will only create a range for\n" +" domain A. The ID range for domain B must be added manually.\n" +"\n" +" Add an additional ID range for the local domain\n" +"\n" +" If the ID range of the local domain is exhausted, i.e. no new IDs can " +"be\n" +" assigned to Posix users or groups by the DNA plugin, a new range has to " +"be\n" +" created to allow new users and groups to be added. (Currently there is " +"no\n" +" connection between this range CLI and the DNA plugin, but a future " +"version\n" +" might be able to modify the configuration of the DNS plugin as well)\n" +"\n" +"In general it is not necessary to modify or delete ID ranges. If there is " +"no\n" +"other way to achieve a certain configuration than to modify or delete an ID\n" +"range it should be done with great care. Because UIDs are stored in the " +"file\n" +"system and are used for access control it might be possible that users are\n" +"allowed to access files of other users if an ID range got deleted and " +"reused\n" +"for a different domain.\n" +"\n" +"(*) The RID is typically the last integer of a user or group SID which " +"follows\n" +"the domain SID. E.g. if the domain SID is S-1-5-21-123-456-789 and a user " +"from\n" +"this domain has the SID S-1-5-21-123-456-789-1010 then 1010 is the RID of " +"the\n" +"user. RIDs are unique in a domain, 32bit values and are used for users and\n" +"groups.\n" +"\n" +msgstr "" + +#: ipaserver/plugins/idrange.py:198 +msgid "ID Ranges" +msgstr "" + +#: ipaserver/plugins/idrange.py:199 +msgid "ID Range" +msgstr "" + +#: ipaserver/plugins/idrange.py:203 +msgid "local domain range" +msgstr "" + +#: ipaserver/plugins/idrange.py:205 ipaserver/plugins/trust.py:674 +msgid "Active Directory domain range" +msgstr "" + +#: ipaserver/plugins/idrange.py:206 ipaserver/plugins/trust.py:675 +msgid "Active Directory trust range with POSIX attributes" +msgstr "" + +#: ipaserver/plugins/idrange.py:214 +msgid "Range name" +msgstr "" + +#: ipaserver/plugins/idrange.py:219 +msgid "First Posix ID of the range" +msgstr "" + +#: ipaserver/plugins/idrange.py:223 +msgid "Number of IDs in the range" +msgstr "" + +#: ipaserver/plugins/idrange.py:227 +msgid "First RID of the corresponding RID range" +msgstr "" + +#: ipaserver/plugins/idrange.py:231 +msgid "First RID of the secondary RID range" +msgstr "" + +#: ipaserver/plugins/idrange.py:236 ipaserver/plugins/idrange.py:626 +msgid "Domain SID of the trusted domain" +msgstr "" + +#: ipaserver/plugins/idrange.py:241 ipaserver/plugins/idrange.py:634 +msgid "Name of the trusted domain" +msgstr "" + +#: ipaserver/plugins/idrange.py:246 +msgid "ID range type, one of allowed values" +msgstr "" + +#: ipaserver/plugins/idrange.py:321 +msgid "" +"range modification leaving objects with ID out of the defined range is not " +"allowed" +msgstr "" + +#: ipaserver/plugins/idrange.py:326 +msgid "" +"Cannot perform SID validation without Samba 4 support installed. Make sure " +"you have installed server-trust-ad sub-package of IPA on the server" +msgstr "" + +#: ipaserver/plugins/idrange.py:333 +msgid "" +"Cross-realm trusts are not configured. Make sure you have run ipa-adtrust-" +"install on the IPA server first" +msgstr "" + +#: ipaserver/plugins/idrange.py:345 +msgid "SID is not recognized as a valid SID for a trusted domain" +msgstr "" + +#: ipaserver/plugins/idrange.py:382 +msgid "" +"\n" +" Add new ID range.\n" +"\n" +" To add a new ID range you always have to specify\n" +"\n" +" --base-id\n" +" --range-size\n" +"\n" +" Additionally\n" +"\n" +" --rid-base\n" +" --secondary-rid-base\n" +"\n" +" may be given for a new ID range for the local domain while\n" +"\n" +" --rid-base\n" +" --dom-sid\n" +"\n" +" must be given to add a new range for a trusted AD domain.\n" +"\n" +msgstr "" + +#: ipaserver/plugins/idrange.py:404 +#, python-format +msgid "Added ID range \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idrange.py:416 ipaserver/plugins/idrange.py:666 +msgid "Options dom-sid and dom-name cannot be used together" +msgstr "" + +#: ipaserver/plugins/idrange.py:427 +msgid "Specified trusted domain name could not be found." +msgstr "" + +#: ipaserver/plugins/idrange.py:442 +msgid "Options dom-sid/dom-name and rid-base must be used together" +msgstr "" + +#: ipaserver/plugins/idrange.py:449 ipaserver/plugins/idrange.py:701 +msgid "" +"Option rid-base must not be used when IPA range type is ipa-ad-trust-posix" +msgstr "" + +#: ipaserver/plugins/idrange.py:456 +msgid "" +"IPA Range type must be one of ipa-ad-trust or ipa-ad-trust-posix when SID of " +"the trusted domain is specified" +msgstr "" + +#: ipaserver/plugins/idrange.py:462 +msgid "Options dom-sid/dom-name and secondary-rid-base cannot be used together" +msgstr "" + +#: ipaserver/plugins/idrange.py:481 +msgid "" +"IPA Range type must not be one of ipa-ad-trust or ipa-ad-trust-posix when " +"SID of the trusted domain is not specified." +msgstr "" + +#: ipaserver/plugins/idrange.py:488 ipaserver/plugins/idrange.py:720 +msgid "Options secondary-rid-base and rid-base must be used together" +msgstr "" + +#: ipaserver/plugins/idrange.py:498 ipaserver/plugins/idrange.py:743 +msgid "Primary RID range and secondary RID range cannot overlap" +msgstr "" + +#: ipaserver/plugins/idrange.py:510 +msgid "" +"You must specify both rid-base and secondary-rid-base options, because ipa-" +"adtrust-install has already been run." +msgstr "" + +#: ipaserver/plugins/idrange.py:527 +msgid "Delete an ID range." +msgstr "" + +#: ipaserver/plugins/idrange.py:529 +#, python-format +msgid "Deleted ID range \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idrange.py:575 +msgid "Search for ranges." +msgstr "" + +#: ipaserver/plugins/idrange.py:578 +#, python-format +msgid "%(count)d range matched" +msgid_plural "%(count)d ranges matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/idrange.py:598 +msgid "Display information about a range." +msgstr "" + +#: ipaserver/plugins/idrange.py:614 +msgid "" +"Modify ID range.\n" +"\n" +msgstr "" + +#: ipaserver/plugins/idrange.py:618 +#, python-format +msgid "Modified ID range \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/idrange.py:650 +msgid "" +"This command can not be used to change ID allocation for local IPA domain. " +"Run `ipa help idrange` for more information" +msgstr "" + +#: ipaserver/plugins/idrange.py:678 +msgid "" +"SID for the specified trusted domain name could not be found. Please specify " +"the SID directly using dom-sid option." +msgstr "" + +#: ipaserver/plugins/idrange.py:685 +msgid "Options dom-sid and secondary-rid-base cannot be used together" +msgstr "" + +#: ipaserver/plugins/idrange.py:692 +msgid "Options dom-sid and rid-base must be used together" +msgstr "" + +#: ipaserver/plugins/hbac.py:7 +msgid "Host-based access control commands" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:24 +msgid "" +"\n" +"OTP configuration\n" +"\n" +"Manage the default values that IPA uses for OTP tokens.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Show basic OTP configuration:\n" +" ipa otpconfig-show\n" +"\n" +" Show all OTP configuration options:\n" +" ipa otpconfig-show --all\n" +"\n" +" Change maximum TOTP authentication window to 10 minutes:\n" +" ipa otpconfig-mod --totp-auth-window=600\n" +"\n" +" Change maximum TOTP synchronization window to 12 hours:\n" +" ipa otpconfig-mod --totp-sync-window=43200\n" +"\n" +" Change maximum HOTP authentication window to 5:\n" +" ipa hotpconfig-mod --hotp-auth-window=5\n" +"\n" +" Change maximum HOTP synchronization window to 50:\n" +" ipa hotpconfig-mod --hotp-sync-window=50\n" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:57 +msgid "OTP configuration options" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:80 ipaserver/plugins/otpconfig.py:81 +msgid "OTP Configuration" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:86 +msgid "TOTP authentication Window" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:87 +msgid "TOTP authentication time variance (seconds)" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:92 +msgid "TOTP Synchronization Window" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:93 +msgid "TOTP synchronization time variance (seconds)" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:98 +msgid "HOTP Authentication Window" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:99 +msgid "HOTP authentication skip-ahead" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:104 +msgid "HOTP Synchronization Window" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:105 +msgid "HOTP synchronization skip-ahead" +msgstr "" + +#: ipaserver/plugins/otpconfig.py:116 +msgid "Modify OTP configuration options." +msgstr "" + +#: ipaserver/plugins/otpconfig.py:121 +msgid "Show the current OTP configuration." +msgstr "" + +#: ipaserver/plugins/trust.py:83 +msgid "" +"\n" +"Cross-realm trusts\n" +"\n" +"Manage trust relationship between IPA and Active Directory domains.\n" +"\n" +"In order to allow users from a remote domain to access resources in IPA " +"domain,\n" +"trust relationship needs to be established. Currently IPA supports only " +"trusts\n" +"between IPA and Active Directory domains under control of Windows Server " +"2008\n" +"or later, with functional level 2008 or later.\n" +"\n" +"Please note that DNS on both IPA and Active Directory domain sides should " +"be\n" +"configured properly to discover each other. Trust relationship relies on\n" +"ability to discover special resources in the other domain via DNS records.\n" +"\n" +"Examples:\n" +"\n" +"1. Establish cross-realm trust with Active Directory using AD administrator\n" +" credentials:\n" +"\n" +" ipa trust-add --type=ad --admin --password\n" +"\n" +"2. List all existing trust relationships:\n" +"\n" +" ipa trust-find\n" +"\n" +"3. Show details of the specific trust relationship:\n" +"\n" +" ipa trust-show \n" +"\n" +"4. Delete existing trust relationship:\n" +"\n" +" ipa trust-del \n" +"\n" +"Once trust relationship is established, remote users will need to be mapped\n" +"to local POSIX groups in order to actually use IPA resources. The mapping\n" +"should be done via use of external membership of non-POSIX group and then\n" +"this group should be included into one of local POSIX groups.\n" +"\n" +"Example:\n" +"\n" +"1. Create group for the trusted domain admins' mapping and their local " +"POSIX\n" +"group:\n" +"\n" +" ipa group-add --desc=' admins external map' " +"ad_admins_external --external\n" +" ipa group-add --desc=' admins' ad_admins\n" +"\n" +"2. Add security identifier of Domain Admins of the to the\n" +" ad_admins_external group:\n" +"\n" +" ipa group-add-member ad_admins_external --external 'AD\\Domain Admins'\n" +"\n" +"3. Allow members of ad_admins_external group to be associated with\n" +" ad_admins POSIX group:\n" +"\n" +" ipa group-add-member ad_admins --groups ad_admins_external\n" +"\n" +"4. List members of external members of ad_admins_external group to see\n" +" their SIDs:\n" +"\n" +" ipa group-show ad_admins_external\n" +"\n" +"\n" +"GLOBAL TRUST CONFIGURATION\n" +"\n" +"When IPA AD trust subpackage is installed and ipa-adtrust-install is run, a\n" +"local domain configuration (SID, GUID, NetBIOS name) is generated. These\n" +"identifiers are then used when communicating with a trusted domain of the\n" +"particular type.\n" +"\n" +"1. Show global trust configuration for Active Directory type of trusts:\n" +"\n" +" ipa trustconfig-show --type ad\n" +"\n" +"2. Modify global configuration for all trusts of Active Directory type and " +"set\n" +" a different fallback primary group (fallback primary group GID is used as " +"a\n" +" primary user GID if user authenticating to IPA domain does not have any\n" +" other primary GID already set):\n" +"\n" +" ipa trustconfig-mod --type ad --fallback-primary-group \"another AD group" +"\"\n" +"\n" +"3. Change primary fallback group back to default hidden group (any group " +"with\n" +" posixGroup object class is allowed):\n" +"\n" +" ipa trustconfig-mod --type ad --fallback-primary-group \"Default SMB Group" +"\"\n" +msgstr "" + +#: ipaserver/plugins/trust.py:178 ipaclient/remote_plugins/2_114/trust.py:275 +msgid "Trust type (ad for Active Directory, default)" +msgstr "" + +#: ipaserver/plugins/trust.py:226 +#, python-format +msgid "" +" Alternatively, following servers are capable of running this command: " +"%(masters)s" +msgstr "" + +#: ipaserver/plugins/trust.py:239 ipaserver/plugins/trust.py:871 +#: ipaserver/plugins/trust.py:887 ipaserver/plugins/trust.py:908 +#: ipaserver/plugins/trust.py:918 ipaserver/plugins/trust.py:1071 +#: ipaserver/plugins/trust.py:1106 +msgid "AD Trust setup" +msgstr "" + +#: ipaserver/plugins/trust.py:250 +msgid "" +"Cannot perform the selected command without Samba 4 support installed. Make " +"sure you have installed server-trust-ad sub-package of IPA." +msgstr "" + +#: ipaserver/plugins/trust.py:260 +msgid "" +"Cannot perform the selected command without Samba 4 instance configured on " +"this machine. Make sure you have run ipa-adtrust-install on this server." +msgstr "" + +#: ipaserver/plugins/trust.py:474 +msgid "" +"Fetching domains from trusted forest failed. See details in the error_log" +msgstr "" + +#: ipaserver/plugins/trust.py:487 +msgid "trust" +msgstr "" + +#: ipaserver/plugins/trust.py:488 +msgid "trusts" +msgstr "" + +#: ipaserver/plugins/trust.py:531 +msgid "Trust" +msgstr "" + +#: ipaserver/plugins/trust.py:536 client/ipa-rmkeytab.c:176 +msgid "Realm name" +msgstr "" + +#: ipaserver/plugins/trust.py:549 ipaclient/remote_plugins/2_114/trust.py:125 +msgid "SID blacklist incoming" +msgstr "" + +#: ipaserver/plugins/trust.py:553 ipaclient/remote_plugins/2_114/trust.py:131 +msgid "SID blacklist outgoing" +msgstr "" + +#: ipaserver/plugins/trust.py:569 +msgid "UPN suffixes" +msgstr "" + +#: ipaserver/plugins/trust.py:586 +#, python-brace-format +msgid "invalid SID: {SID}" +msgstr "" + +#: ipaserver/plugins/trust.py:654 +msgid "" +"\n" +"Add new trust to use.\n" +"\n" +"This command establishes trust relationship to another domain\n" +"which becomes 'trusted'. As result, users of the trusted domain\n" +"may access resources of this domain.\n" +"\n" +"Only trusts to Active Directory domains are supported right now.\n" +"\n" +"The command can be safely run multiple times against the same domain,\n" +"this will cause change to trust relationship credentials on both\n" +"sides.\n" +"\n" +"Note that if the command was previously run with a specific range type,\n" +"or with automatic detection of the range type, and you want to configure a\n" +"different range type, you may need to delete first the ID range using\n" +"ipa idrange-del before retrying the command with the desired range type.\n" +" " +msgstr "" + +#: ipaserver/plugins/trust.py:683 ipaserver/plugins/trust.py:1795 +msgid "Active Directory domain administrator" +msgstr "" + +#: ipaserver/plugins/trust.py:687 ipaserver/plugins/trust.py:1799 +msgid "Active Directory domain administrator's password" +msgstr "" + +#: ipaserver/plugins/trust.py:692 ipaserver/plugins/trust.py:1804 +msgid "Domain controller for the Active Directory domain (optional)" +msgstr "" + +#: ipaserver/plugins/trust.py:697 ipaclient/remote_plugins/2_114/trust.py:300 +msgid "Shared secret for the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:702 ipaclient/remote_plugins/2_114/trust.py:305 +msgid "First Posix ID of the range reserved for the trusted domain" +msgstr "" + +#: ipaserver/plugins/trust.py:707 ipaclient/remote_plugins/2_114/trust.py:310 +msgid "Size of the ID range reserved for the trusted domain" +msgstr "" + +#: ipaserver/plugins/trust.py:712 +msgid "Type of trusted domain ID range, one of allowed values" +msgstr "" + +#: ipaserver/plugins/trust.py:717 ipaserver/dcerpc_common.py:22 +msgid "Two-way trust" +msgstr "" + +#: ipaserver/plugins/trust.py:719 ipaclient/remote_plugins/2_156/trust.py:324 +msgid "" +"Establish bi-directional trust. By default trust is inbound one-way only." +msgstr "" + +#: ipaserver/plugins/trust.py:724 +msgid "External trust" +msgstr "" + +#: ipaserver/plugins/trust.py:726 +msgid "" +"Establish external trust to a domain in another forest. The trust is not " +"transitive beyond the domain." +msgstr "" + +#: ipaserver/plugins/trust.py:732 +#, python-format +msgid "Added Active Directory trust for realm \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:733 +#, python-format +msgid "Re-established trust to domain \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:829 +msgid "missing base_id" +msgstr "" + +#: ipaserver/plugins/trust.py:831 +msgid "pysss_murmur is not available on the server and no base-id is given." +msgstr "" + +#: ipaserver/plugins/trust.py:841 +msgid "trust type" +msgstr "" + +#: ipaserver/plugins/trust.py:842 +msgid "only \"ad\" is supported" +msgstr "" + +#: ipaserver/plugins/trust.py:849 +msgid "" +"Cannot establish a trust to AD deployed in the same domain as IPA. Such " +"setup is not supported." +msgstr "" + +#: ipaserver/plugins/trust.py:862 +msgid "Realm-domain mismatch" +msgstr "" + +#: ipaserver/plugins/trust.py:863 +msgid "" +"To establish trust with Active Directory, the domain name and the realm name " +"of the IPA server must match" +msgstr "" + +#: ipaserver/plugins/trust.py:873 ipaserver/plugins/group.py:612 +#: ipaserver/plugins/group.py:669 +msgid "" +"Cannot perform join operation without own domain configured. Make sure you " +"have run ipa-adtrust-install on the IPA server first" +msgstr "" + +#: ipaserver/plugins/trust.py:889 +#, python-format +msgid "" +"Trusted domain %(domain)s is included among IPA realm domains. It needs to " +"be removed prior to establishing the trust. See the \"ipa realmdomains-mod --" +"del-domain\" command." +msgstr "" + +#: ipaserver/plugins/trust.py:910 +msgid "Trusted domain and administrator account use different realms" +msgstr "" + +#: ipaserver/plugins/trust.py:919 +msgid "Realm administrator password should be specified" +msgstr "" + +#: ipaserver/plugins/trust.py:940 +msgid "id range type" +msgstr "" + +#: ipaserver/plugins/trust.py:942 +msgid "" +"Only the ipa-ad-trust and ipa-ad-trust-posix are allowed values for --range-" +"type when adding an AD trust." +msgstr "" + +#: ipaserver/plugins/trust.py:952 +msgid "id range" +msgstr "" + +#: ipaserver/plugins/trust.py:954 +msgid "" +"An id range already exists for this trust. You should either delete the old " +"range, or exclude --base-id/--range-size options from the command." +msgstr "" + +#: ipaserver/plugins/trust.py:976 +msgid "range exists" +msgstr "" + +#: ipaserver/plugins/trust.py:978 +msgid "" +"ID range with the same name but different domain SID already exists. The ID " +"range for the new trusted domain must be created manually." +msgstr "" + +#: ipaserver/plugins/trust.py:986 +msgid "range type change" +msgstr "" + +#: ipaserver/plugins/trust.py:987 +msgid "" +"ID range for the trusted domain already exists, but it has a different type. " +"Please remove the old range manually, or do not enforce type via --range-" +"type option." +msgstr "" + +#: ipaserver/plugins/trust.py:1025 +#, python-brace-format +msgid "Unable to resolve domain controller for {domain} domain. " +msgstr "" + +#: ipaserver/plugins/trust.py:1039 +msgid "" +"Forward policy is defined for it in IPA DNS, perhaps forwarder points to " +"incorrect host?" +msgstr "" + +#: ipaserver/plugins/trust.py:1045 +#, python-brace-format +msgid "" +"IPA manages DNS, please verify your DNS configuration and make sure that " +"service records of the '{domain}' domain can be resolved. Examples how to " +"configure DNS with CLI commands or the Web UI can be found in the " +"documentation. " +msgstr "" + +#: ipaserver/plugins/trust.py:1057 +#, python-brace-format +msgid "" +"Since IPA does not manage DNS records, ensure DNS is configured to resolve " +"'{domain}' domain from IPA hosts and back." +msgstr "" + +#: ipaserver/plugins/trust.py:1072 +msgid "Unable to verify write permissions to the AD" +msgstr "" + +#: ipaserver/plugins/trust.py:1107 +msgid "Not enough arguments specified to perform trust setup" +msgstr "" + +#: ipaserver/plugins/trust.py:1113 ipaclient/remote_plugins/2_114/trust.py:352 +msgid "Delete a trust." +msgstr "" + +#: ipaserver/plugins/trust.py:1115 +#, python-format +msgid "Deleted trust \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:1120 +msgid "" +"\n" +" Modify a trust (for future use).\n" +"\n" +" Currently only the default option to modify the LDAP attributes is\n" +" available. More specific options will be added in coming releases.\n" +" " +msgstr "" + +#: ipaserver/plugins/trust.py:1127 +#, python-format +msgid "Modified trust \"%(value)s\" (change will be effective in 60 seconds)" +msgstr "" + +#: ipaserver/plugins/trust.py:1140 ipaclient/remote_plugins/2_114/trust.py:445 +msgid "Search for trusts." +msgstr "" + +#: ipaserver/plugins/trust.py:1145 +#, python-format +msgid "%(count)d trust matched" +msgid_plural "%(count)d trusts matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/trust.py:1183 ipaclient/remote_plugins/2_114/trust.py:670 +msgid "Display information about a trust." +msgstr "" + +#: ipaserver/plugins/trust.py:1234 +msgid "trust configuration" +msgstr "" + +#: ipaserver/plugins/trust.py:1240 ipaserver/plugins/trust.py:1241 +msgid "Global Trust Configuration" +msgstr "" + +#: ipaserver/plugins/trust.py:1249 ipaclient/remote_plugins/2_114/trust.py:145 +msgid "Security Identifier" +msgstr "" + +#: ipaserver/plugins/trust.py:1253 ipaclient/remote_plugins/2_114/trust.py:149 +msgid "NetBIOS name" +msgstr "" + +#: ipaserver/plugins/trust.py:1257 ipaclient/remote_plugins/2_114/trust.py:153 +msgid "Domain GUID" +msgstr "" + +#: ipaserver/plugins/trust.py:1262 ipaclient/remote_plugins/2_114/trust.py:157 +msgid "Fallback primary group" +msgstr "" + +#: ipaserver/plugins/trust.py:1266 +msgid "IPA AD trust agents" +msgstr "" + +#: ipaserver/plugins/trust.py:1267 +msgid "IPA servers configured as AD trust agents" +msgstr "" + +#: ipaserver/plugins/trust.py:1272 +msgid "IPA AD trust controllers" +msgstr "" + +#: ipaserver/plugins/trust.py:1273 +msgid "IPA servers configured as AD trust controllers" +msgstr "" + +#: ipaserver/plugins/trust.py:1287 +msgid "unsupported trust type" +msgstr "" + +#: ipaserver/plugins/trust.py:1351 ipaclient/remote_plugins/2_114/trust.py:720 +msgid "Modify global trust configuration." +msgstr "" + +#: ipaserver/plugins/trust.py:1354 +#, python-format +msgid "Modified \"%(value)s\" trust configuration" +msgstr "" + +#: ipaserver/plugins/trust.py:1375 ipaclient/remote_plugins/2_114/trust.py:798 +msgid "Show global trust configuration." +msgstr "" + +#: ipaserver/plugins/trust.py:1408 ipaclient/remote_plugins/2_114/trust.py:636 +msgid "Resolve security identifiers of users and groups in trusted domains" +msgstr "" + +#: ipaserver/plugins/trust.py:1413 ipaclient/remote_plugins/2_114/trust.py:644 +msgid "Security Identifiers (SIDs)" +msgstr "" + +#: ipaserver/plugins/trust.py:1419 +msgid "SID" +msgstr "" + +#: ipaserver/plugins/trust.py:1451 ipaclient/remote_plugins/2_114/trust.py:190 +msgid "Determine whether ipa-adtrust-install has been run on this system" +msgstr "" + +#: ipaserver/plugins/trust.py:1477 ipaclient/remote_plugins/2_114/trust.py:205 +msgid "" +"Determine whether Schema Compatibility plugin is configured to serve trusted " +"domain users and groups" +msgstr "" + +#: ipaserver/plugins/trust.py:1529 ipaclient/remote_plugins/2_114/trust.py:220 +msgid "Determine whether ipa-adtrust-install has been run with sidgen task" +msgstr "" + +#: ipaserver/plugins/trust.py:1545 +msgid "sidgen_was_run" +msgstr "" + +#: ipaserver/plugins/trust.py:1547 +msgid "" +"This command relies on the existence of the \"editors\" group, but this " +"group was not found." +msgstr "" + +#: ipaserver/plugins/trust.py:1566 +msgid "trust domain" +msgstr "" + +#: ipaserver/plugins/trust.py:1567 +msgid "trust domains" +msgstr "" + +#: ipaserver/plugins/trust.py:1575 +msgid "Trusted domains" +msgstr "" + +#: ipaserver/plugins/trust.py:1576 +msgid "Trusted domain" +msgstr "" + +#: ipaserver/plugins/trust.py:1590 +msgid "Domain enabled" +msgstr "" + +#: ipaserver/plugins/trust.py:1611 ipaclient/remote_plugins/2_114/trust.py:1053 +msgid "Search domains of the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1637 ipaclient/remote_plugins/2_114/trust.py:1151 +msgid "Modify trustdomain of the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1645 ipaclient/remote_plugins/2_114/trust.py:849 +msgid "Allow access from the trusted domain" +msgstr "" + +#: ipaserver/plugins/trust.py:1659 ipaclient/remote_plugins/2_114/trust.py:939 +msgid "Remove information about the domain associated with the trust." +msgstr "" + +#: ipaserver/plugins/trust.py:1662 +#, python-format +msgid "Removed information about the trusted domain \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:1680 +msgid "" +"cannot delete root domain of the trust, use trust-del to delete the trust " +"itself" +msgstr "" + +#: ipaserver/plugins/trust.py:1789 ipaclient/remote_plugins/2_114/trust.py:389 +msgid "Refresh list of the domains associated with the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1828 +msgid "" +"List of trust domains successfully refreshed. Use trustdomain-find command " +"to list them." +msgstr "" + +#: ipaserver/plugins/trust.py:1836 +msgid "Configure this server as a trust agent." +msgstr "" + +#: ipaserver/plugins/trust.py:1845 ipaserver/plugins/server.py:903 +msgid "Remote server name" +msgstr "" + +#: ipaserver/plugins/trust.py:1846 ipaserver/plugins/server.py:904 +msgid "Remote IPA server hostname" +msgstr "" + +#: ipaserver/plugins/trust.py:1852 +msgid "Enable support for trusted domains for old clients" +msgstr "" + +#: ipaserver/plugins/trust.py:1862 ipaserver/plugins/server.py:914 +#, python-format +msgid "must be \"%s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:1868 +msgid "not allowed to remotely add agent" +msgstr "" + +#: ipaserver/plugins/trust.py:1901 ipaclient/remote_plugins/2_114/trust.py:1017 +msgid "Allow use of IPA resources by the domain of the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1904 +#, python-format +msgid "Enabled trust domain \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:1913 +msgid "Root domain of the trust is always enabled for the existing trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1943 ipaclient/remote_plugins/2_114/trust.py:981 +msgid "Disable use of IPA resources by the domain of the trust" +msgstr "" + +#: ipaserver/plugins/trust.py:1946 +#, python-format +msgid "Disabled trust domain \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/trust.py:1955 +msgid "" +"cannot disable root domain of the trust, use trust-del to delete the trust " +"itself" +msgstr "" + #: ipaserver/plugins/dnsserver.py:35 msgid "" "\n" @@ -18448,521 +17380,1515 @@ msgstr "" msgid "Deleted DNS server \"%(value)s\"" msgstr "" -#: ipaserver/plugins/idviews.py:59 ipaclient/remote_plugins/2_114/idviews.py:19 +#: ipaserver/plugins/server.py:36 msgid "" "\n" -"ID Views\n" -"\n" -"Manage ID Views\n" -"\n" -"IPA allows to override certain properties of users and groups per each " -"host.\n" -"This functionality is primarily used to allow migration from older systems " -"or\n" -"other Identity Management solutions.\n" +"IPA servers\n" msgstr "" -#: ipaserver/plugins/idviews.py:72 ipaserver/plugins/idviews.py:101 -#: ipaserver/plugins/idviews.py:109 ipaserver/plugins/idviews.py:328 -#: ipaserver/plugins/idviews.py:776 -msgid "ID View" -msgstr "" - -#: ipaserver/plugins/idviews.py:74 -msgid "system ID View" -msgstr "" - -#: ipaserver/plugins/idviews.py:80 -msgid "Fallback to AD DC LDAP" -msgstr "" - -#: ipaserver/plugins/idviews.py:81 +#: ipaserver/plugins/server.py:38 msgid "" -"Allow falling back to AD DC LDAP when resolving AD trusted objects. For two-" -"way trusts only." +"\n" +"Get information about installed IPA servers.\n" msgstr "" -#: ipaserver/plugins/idviews.py:102 ipaserver/plugins/idviews.py:108 -msgid "ID Views" +#: ipaserver/plugins/server.py:42 +msgid "" +"\n" +" Find all servers:\n" +" ipa server-find\n" msgstr "" -#: ipaserver/plugins/idviews.py:114 -msgid "ID View Name" +#: ipaserver/plugins/server.py:45 +msgid "" +"\n" +" Show specific server:\n" +" ipa server-show ipa.example.com\n" msgstr "" -#: ipaserver/plugins/idviews.py:122 -msgid "User object overrides" +#: ipaserver/plugins/server.py:61 +msgid "server" msgstr "" -#: ipaserver/plugins/idviews.py:126 -msgid "Group object overrides" +#: ipaserver/plugins/server.py:62 +msgid "servers" msgstr "" -#: ipaserver/plugins/idviews.py:130 -msgid "Hosts the view applies to" +#: ipaserver/plugins/server.py:70 +msgid "IPA Servers" msgstr "" -#: ipaserver/plugins/idviews.py:172 -msgid "Add a new ID View." +#: ipaserver/plugins/server.py:112 ipaclient/remote_plugins/2_164/server.py:54 +msgid "Managed suffixes" msgstr "" -#: ipaserver/plugins/idviews.py:173 +#: ipaserver/plugins/server.py:118 ipaclient/remote_plugins/2_156/server.py:51 +msgid "Min domain level" +msgstr "" + +#: ipaserver/plugins/server.py:119 ipaclient/remote_plugins/2_156/server.py:52 +msgid "Minimum domain level" +msgstr "" + +#: ipaserver/plugins/server.py:125 ipaclient/remote_plugins/2_156/server.py:56 +msgid "Max domain level" +msgstr "" + +#: ipaserver/plugins/server.py:126 ipaclient/remote_plugins/2_156/server.py:57 +msgid "Maximum domain level" +msgstr "" + +#: ipaserver/plugins/server.py:133 +msgid "Server location" +msgstr "" + +#: ipaserver/plugins/server.py:140 +msgid "Service weight" +msgstr "" + +#: ipaserver/plugins/server.py:141 +msgid "Weight for server services" +msgstr "" + +#: ipaserver/plugins/server.py:148 +msgid "Service relative weight" +msgstr "" + +#: ipaserver/plugins/server.py:149 +msgid "Relative weight for server services (counts per location)" +msgstr "" + +#: ipaserver/plugins/server.py:154 +msgid "Enabled server roles" +msgstr "" + +#: ipaserver/plugins/server.py:155 +msgid "List of enabled roles" +msgstr "" + +#: ipaserver/plugins/server.py:222 +msgid "Modify information about an IPA server." +msgstr "" + +#: ipaserver/plugins/server.py:224 #, python-format -msgid "Added ID View \"%(value)s\"" +msgid "Modified IPA server \"%(value)s\"" msgstr "" -#: ipaserver/plugins/idviews.py:189 -msgid "Delete an ID View." +#: ipaserver/plugins/server.py:303 ipaclient/remote_plugins/2_156/server.py:104 +msgid "Search for IPA servers." msgstr "" -#: ipaserver/plugins/idviews.py:190 +#: ipaserver/plugins/server.py:306 #, python-format -msgid "Deleted ID View \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:202 -msgid "Modify an ID View." -msgstr "" - -#: ipaserver/plugins/idviews.py:203 -#, python-format -msgid "Modified an ID View \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:218 -msgid "Search for an ID View." -msgstr "" - -#: ipaserver/plugins/idviews.py:219 -#, python-format -msgid "%(count)d ID View matched" -msgid_plural "%(count)d ID Views matched" +msgid "%(count)d IPA server matched" +msgid_plural "%(count)d IPA servers matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/idviews.py:225 -msgid "Display information about an ID View." +#: ipaserver/plugins/server.py:428 ipaclient/remote_plugins/2_156/server.py:200 +msgid "Show IPA server." msgstr "" -#: ipaserver/plugins/idviews.py:230 -msgid "Enumerate all the hosts the view applies to." +#: ipaserver/plugins/server.py:443 ipaclient/remote_plugins/2_156/server.py:64 +msgid "Delete IPA server." msgstr "" -#: ipaserver/plugins/idviews.py:329 -msgid "Default Trust View cannot be applied on hosts" +#: ipaserver/plugins/server.py:444 +#, python-format +msgid "Deleted IPA server \"%(value)s\"" msgstr "" -#: ipaserver/plugins/idviews.py:357 ipaserver/plugins/idviews.py:390 -msgid "not found" +#: ipaserver/plugins/server.py:449 +msgid "Ignore topology errors" msgstr "" -#: ipaserver/plugins/idviews.py:371 -msgid "ID View cannot be applied to IPA master" +#: ipaserver/plugins/server.py:450 +msgid "Ignore topology connectivity problems after removal" msgstr "" -#: ipaserver/plugins/idviews.py:388 -msgid "ID View already applied" +#: ipaserver/plugins/server.py:455 +msgid "Ignore check for last remaining CA or DNS server" msgstr "" -#: ipaserver/plugins/idviews.py:408 -msgid "value" +#: ipaserver/plugins/server.py:456 +msgid "Skip a check whether the last CA master or DNS server is removed" msgstr "" -#: ipaserver/plugins/idviews.py:417 +#: ipaserver/plugins/server.py:462 +msgid "Force server removal" +msgstr "" + +#: ipaserver/plugins/server.py:463 +msgid "Force server removal even if it does not exist" +msgstr "" + +#: ipaserver/plugins/server.py:500 msgid "" -"Applies ID View to specified hosts or current members of specified " -"hostgroups. If any other ID View is applied to the host, it is overridden." +"Replica is active DNSSEC key master. Uninstall could break your DNS system. " +"Please disable or replace DNSSEC key master first." msgstr "" -#: ipaserver/plugins/idviews.py:421 -#, python-format -msgid "ID View applied to %i host." +#: ipaserver/plugins/server.py:506 +msgid "Deleting this server will leave your installation without a DNS." msgstr "" -#: ipaserver/plugins/idviews.py:422 -#, python-format -msgid "ID View applied to %i hosts." -msgstr "" - -#: ipaserver/plugins/idviews.py:429 -msgid "Hosts to apply the ID View to" -msgstr "" - -#: ipaserver/plugins/idviews.py:434 +#: ipaserver/plugins/server.py:519 msgid "" -"Hostgroups to whose hosts apply the ID View to. Please note that view is not " -"applied automatically to any hosts added to the hostgroup after running the " -"idview-apply command." +"Deleting this server is not allowed as it would leave your installation " +"without a KRA." msgstr "" -#: ipaserver/plugins/idviews.py:437 ipaserver/plugins/idviews.py:480 -msgid "hostgroups" -msgstr "" - -#: ipaserver/plugins/idviews.py:445 -msgid "Hosts that this ID View was applied to." -msgstr "" - -#: ipaserver/plugins/idviews.py:449 -msgid "Hosts or hostgroups that this ID View could not be applied to." -msgstr "" - -#: ipaserver/plugins/idviews.py:454 -msgid "Number of hosts the ID View was applied to:" -msgstr "" - -#: ipaserver/plugins/idviews.py:461 +#: ipaserver/plugins/server.py:529 msgid "" -"Clears ID View from specified hosts or current members of specified " -"hostgroups." +"Deleting this server is not allowed as it would leave your installation " +"without a CA." msgstr "" -#: ipaserver/plugins/idviews.py:464 +#: ipaserver/plugins/server.py:544 +msgid "Ignoring these warnings and proceeding with removal" +msgstr "" + +#: ipaserver/plugins/server.py:594 #, python-format -msgid "ID View cleared from %i host." -msgstr "" - -#: ipaserver/plugins/idviews.py:465 -#, python-format -msgid "ID View cleared from %i hosts." -msgstr "" - -#: ipaserver/plugins/idviews.py:472 -msgid "Hosts to clear (any) ID View from." -msgstr "" - -#: ipaserver/plugins/idviews.py:477 msgid "" -"Hostgroups whose hosts should have ID Views cleared. Note that view is not " -"cleared automatically from any host added to the hostgroup after running " -"idview-unapply command." +"Failed to clean memberPrincipal %(principal)s from s4u2proxy entry %(dn)s: " +"%(err)s" msgstr "" -#: ipaserver/plugins/idviews.py:488 -msgid "Hosts that ID View was cleared from." +#: ipaserver/plugins/server.py:615 +#, python-format +msgid "Failed to clean up DNA hostname entries for %(master)s: %(err)s" msgstr "" -#: ipaserver/plugins/idviews.py:492 -msgid "Hosts or hostgroups that ID View could not be cleared from." +#: ipaserver/plugins/server.py:636 +#, python-format +msgid "Failed to remove server %(master)s from server list: %(err)s" msgstr "" -#: ipaserver/plugins/idviews.py:497 -msgid "Number of hosts that had a ID View was unset:" +#: ipaserver/plugins/server.py:662 +#, python-format +msgid "Failed to clean up Custodia keys for %(master)s: %(err)s" msgstr "" -#: ipaserver/plugins/idviews.py:533 +#: ipaserver/plugins/server.py:700 +#, python-format +msgid "Failed to cleanup server principals/keys: %(err)s" +msgstr "" + +#: ipaserver/plugins/server.py:716 +#, python-format +msgid "Failed to cleanup %(hostname)s DNS entries: %(err)s" +msgstr "" + +#: ipaserver/plugins/server.py:721 +msgid "You may need to manually remove them from the tree" +msgstr "" + +#: ipaserver/plugins/server.py:736 +#, python-format +msgid "Forcing removal of %(hostname)s" +msgstr "" + +#: ipaserver/plugins/server.py:746 +msgid "Ignoring topology connectivity errors." +msgstr "" + +#: ipaserver/plugins/server.py:780 +msgid "Server has already been deleted" +msgstr "" + +#: ipaserver/plugins/server.py:830 +msgid "Agreements deleted" +msgstr "" + +#: ipaserver/plugins/server.py:841 +msgid "Following segments were not deleted:" +msgstr "" + +#: ipaserver/plugins/server.py:895 ipaclient/remote_plugins/2_164/server.py:71 +msgid "Check connection to remote IPA server." +msgstr "" + +#: ipaserver/plugins/server.py:926 +msgid "not allowed to perform server connection check" +msgstr "" + +#: ipaserver/plugins/server.py:952 +msgid "Set enabled/hidden state of a server." +msgstr "" + +#: ipaserver/plugins/server.py:958 +msgid "State" +msgstr "" + +#: ipaserver/plugins/server.py:959 +msgid "Server state" +msgstr "" + +#: ipaserver/plugins/server.py:964 +#, python-format +msgid "Changed server state of \"%(value)s\"." +msgstr "" + +#: ipaserver/plugins/server.py:973 +msgid "Cannot hide CA renewal master." +msgstr "" + +#: ipaserver/plugins/server.py:975 +msgid "Cannot hide DNSSec key master." +msgstr "" + +#: ipaserver/plugins/server.py:987 +#, python-format +msgid "Cannot hide last enabled %(name)s server." +msgstr "" + +#: ipaserver/plugins/baseldap.py:52 ipaclient/frontend.py:28 +#: ipaclient/frontend.py:90 +msgid "Failed members" +msgstr "" + +#: ipaserver/plugins/baseldap.py:55 ipaclient/remote_plugins/2_114/role.py:74 +msgid "Member users" +msgstr "" + +#: ipaserver/plugins/baseldap.py:58 ipaclient/remote_plugins/2_114/role.py:79 +msgid "Member groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:61 ipaclient/remote_plugins/2_114/user.py:283 +msgid "Member of groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:64 +msgid "Member hosts" +msgstr "" + +#: ipaserver/plugins/baseldap.py:67 +msgid "Member host-groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:70 ipaclient/remote_plugins/2_114/host.py:192 +msgid "Member of host-groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:82 ipaserver/plugins/sudocmdgroup.py:118 +#: ipaserver/plugins/sudocmdgroup.py:138 +msgid "Sudo Command Groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:88 +msgid "Granting privilege to roles" +msgstr "" + +#: ipaserver/plugins/baseldap.py:91 +msgid "Member netgroups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:94 ipaclient/remote_plugins/2_114/host.py:202 +msgid "Member of netgroups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:97 ipaclient/remote_plugins/2_114/role.py:99 +msgid "Member services" +msgstr "" + +#: ipaserver/plugins/baseldap.py:100 +msgid "Member service groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:106 +msgid "Member HBAC service" +msgstr "" + +#: ipaserver/plugins/baseldap.py:109 +msgid "Member HBAC service groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:124 +msgid "Member ID user overrides" +msgstr "" + +#: ipaserver/plugins/baseldap.py:126 +msgid "Indirect Member ID user overrides" +msgstr "" + +#: ipaserver/plugins/baseldap.py:128 +msgid "Indirect Member users" +msgstr "" + +#: ipaserver/plugins/baseldap.py:131 +msgid "Indirect Member groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:134 +msgid "Indirect Member hosts" +msgstr "" + +#: ipaserver/plugins/baseldap.py:137 +msgid "Indirect Member host-groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:140 +msgid "Indirect Member of roles" +msgstr "" + +#: ipaserver/plugins/baseldap.py:143 +msgid "Indirect Member permissions" +msgstr "" + +#: ipaserver/plugins/baseldap.py:146 +msgid "Indirect Member HBAC service" +msgstr "" + +#: ipaserver/plugins/baseldap.py:149 +msgid "Indirect Member HBAC service group" +msgstr "" + +#: ipaserver/plugins/baseldap.py:152 +msgid "Indirect Member netgroups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:173 ipaclient/frontend.py:32 +msgid "Failed source hosts/hostgroups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:176 ipaclient/frontend.py:36 +msgid "Failed hosts/hostgroups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:179 ipaclient/frontend.py:40 +msgid "Failed users/groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:182 ipaclient/frontend.py:44 +msgid "Failed service/service groups" +msgstr "" + +#: ipaserver/plugins/baseldap.py:185 ipaclient/frontend.py:48 +msgid "Failed to remove" +msgstr "" + +#: ipaserver/plugins/baseldap.py:189 ipaclient/frontend.py:53 +msgid "Failed RunAs" +msgstr "" + +#: ipaserver/plugins/baseldap.py:192 ipaclient/frontend.py:57 +msgid "Failed RunAsGroup" +msgstr "" + +#: ipaserver/plugins/baseldap.py:210 +msgid "Invalid format. Should be name=value" +msgstr "" + +#: ipaserver/plugins/baseldap.py:330 +msgid "External host" +msgstr "" + +#: ipaserver/plugins/baseldap.py:507 +msgid "An IPA master host cannot be deleted or disabled" +msgstr "" + +#: ipaserver/plugins/baseldap.py:538 +msgid "entry" +msgstr "" + +#: ipaserver/plugins/baseldap.py:539 +msgid "entries" +msgstr "" + +#: ipaserver/plugins/baseldap.py:577 ipaserver/plugins/baseldap.py:578 +msgid "Entry" +msgstr "" + +#: ipaserver/plugins/baseldap.py:581 +#, python-format +msgid "container entry (%(container)s) not found" +msgstr "" + +#: ipaserver/plugins/baseldap.py:582 +#, python-format +msgid "%(parent)s: %(oname)s not found" +msgstr "" + +#: ipaserver/plugins/baseldap.py:584 +#, python-format +msgid "%(oname)s with name \"%(pkey)s\" already exists" +msgstr "" + +#: ipaserver/plugins/baseldap.py:871 ipaserver/plugins/baseldap.py:879 +#, python-format +msgid "attribute \"%(attribute)s\" not allowed" +msgstr "" + +#: ipaserver/plugins/baseldap.py:884 +#, python-format +msgid "these attributes are not allowed: %(attrs)s" +msgstr "" + +#: ipaserver/plugins/baseldap.py:894 msgid "" -"You are trying to reference a magic private group which is not allowed to be " -"overridden. Try overriding the GID attribute of the corresponding user " -"instead." +"Set an attribute to a name/value pair. Format is attr=value.\n" +"For multi-valued attributes, the command replaces the values already present." msgstr "" -#: ipaserver/plugins/idviews.py:571 -msgid "IPA object" -msgstr "" - -#: ipaserver/plugins/idviews.py:572 +#: ipaserver/plugins/baseldap.py:900 msgid "" -"system IPA objects (e.g. system groups, user private groups) cannot be " -"overridden" +"Add an attribute/value pair. Format is attr=value. The attribute\n" +"must be part of the schema." msgstr "" -#: ipaserver/plugins/idviews.py:666 +#: ipaserver/plugins/baseldap.py:906 +msgid "" +"Delete an attribute/value pair. The option will be evaluated\n" +"last, after all sets and adds." +msgstr "" + +#: ipaserver/plugins/baseldap.py:942 +msgid "attribute is not configurable" +msgstr "" + +#: ipaserver/plugins/baseldap.py:1045 +msgid "No such attribute on this entry" +msgstr "" + +#: ipaserver/plugins/baseldap.py:1140 ipaserver/plugins/cert.py:1342 +msgid "Suppress processing of membership attributes." +msgstr "" + +#: ipaserver/plugins/baseldap.py:1294 +msgid "Continuous mode: Don't stop on errors." +msgstr "" + +#: ipaserver/plugins/baseldap.py:1315 ipaserver/plugins/baseldap.py:1390 +msgid "Rights" +msgstr "" + +#: ipaserver/plugins/baseldap.py:1316 ipaserver/plugins/baseldap.py:1391 +msgid "" +"Display the access rights of this entry (requires --all). See ipa man page " +"for details." +msgstr "" + +#: ipaserver/plugins/baseldap.py:1400 +msgid "Rename" +msgstr "" + +#: ipaserver/plugins/baseldap.py:1401 #, python-format -msgid "Anchor '%(anchor)s' could not be resolved." +msgid "Rename the %(ldap_obj_name)s object" msgstr "" -#: ipaserver/plugins/idviews.py:713 -msgid "Anchor to override" +#: ipaserver/plugins/baseldap.py:1499 ipaserver/plugins/baseldap.py:2407 +msgid "the entry was deleted while being modified" msgstr "" -#: ipaserver/plugins/idviews.py:777 -msgid "Default Trust View cannot contain IPA users" -msgstr "" - -#: ipaserver/plugins/idviews.py:815 -msgid "Add a new ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:816 +#: ipaserver/plugins/baseldap.py:1632 ipaserver/plugins/baseldap.py:2134 #, python-format -msgid "Added ID override \"%(value)s\"" +msgid "%s" msgstr "" -#: ipaserver/plugins/idviews.py:831 -msgid "Delete an ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:832 +#: ipaserver/plugins/baseldap.py:1675 ipaserver/plugins/baseldap.py:2158 #, python-format -msgid "Deleted ID override \"%(value)s\"" +msgid "%s to add" msgstr "" -#: ipaserver/plugins/idviews.py:855 -msgid "Modify an ID override." +#: ipaserver/plugins/baseldap.py:1687 ipaserver/plugins/baseldap.py:2174 +msgid "Number of members added" msgstr "" -#: ipaserver/plugins/idviews.py:856 +#: ipaserver/plugins/baseldap.py:1774 ipaserver/plugins/baseldap.py:2257 #, python-format -msgid "Modified an ID override \"%(value)s\"" +msgid "%s to remove" msgstr "" -#: ipaserver/plugins/idviews.py:863 -msgid "ID override" +#: ipaserver/plugins/baseldap.py:1781 ipaserver/plugins/baseldap.py:2269 +msgid "Members that could not be removed" msgstr "" -#: ipaserver/plugins/idviews.py:864 -msgid "ID overrides cannot be renamed" +#: ipaserver/plugins/baseldap.py:1785 ipaserver/plugins/baseldap.py:2273 +msgid "Number of members removed" msgstr "" -#: ipaserver/plugins/idviews.py:876 -msgid "Search for an ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:877 +#: ipaserver/plugins/baseldap.py:1882 #, python-format -msgid "%(count)d ID override matched" -msgid_plural "%(count)d ID overrides matched" +msgid "" +"Search for %(searched_object)s with these %(relationship)s %(ldap_object)s." +msgstr "" + +#: ipaserver/plugins/baseldap.py:1883 +#, python-format +msgid "" +"Search for %(searched_object)s without these %(relationship)s " +"%(ldap_object)s." +msgstr "" + +#: ipaserver/plugins/baseldap.py:2438 +#, python-format +msgid "added attribute value to entry %(value)s" +msgstr "" + +#: ipaserver/plugins/baseldap.py:2447 +#, python-format +msgid "'%(attr)s' already contains one or more values" +msgstr "" + +#: ipaserver/plugins/baseldap.py:2454 +#, python-format +msgid "removed attribute values from entry %(value)s" +msgstr "" + +#: ipaserver/plugins/baseldap.py:2463 +msgid "one or more values to remove" +msgstr "" + +#: ipaserver/plugins/baseuser.py:57 +msgid "" +"\n" +"Baseuser\n" +"\n" +"This contains common definitions for user/stageuser\n" +msgstr "" + +#: ipaserver/plugins/baseuser.py:69 ipaclient/remote_plugins/2_114/user.py:332 +msgid "Kerberos keys available" +msgstr "" + +#: ipaserver/plugins/baseuser.py:88 +msgid "must be TRUE or FALSE" +msgstr "" + +#: ipaserver/plugins/baseuser.py:145 +msgid "" +"Object class ipaNTUserAttrs is missing, user entry cannot have SMB " +"attributes." +msgstr "" + +#: ipaserver/plugins/baseuser.py:212 ipaclient/remote_plugins/2_114/user.py:75 +msgid "First name" +msgstr "" + +#: ipaserver/plugins/baseuser.py:216 ipaclient/remote_plugins/2_114/user.py:79 +msgid "Last name" +msgstr "" + +#: ipaserver/plugins/baseuser.py:224 ipaclient/remote_plugins/2_114/user.py:88 +msgid "Display name" +msgstr "" + +#: ipaserver/plugins/baseuser.py:229 ipaclient/remote_plugins/2_114/user.py:93 +msgid "Initials" +msgstr "" + +#: ipaserver/plugins/baseuser.py:265 ipaclient/remote_plugins/2_114/user.py:118 +msgid "Kerberos principal expiration" +msgstr "" + +#: ipaserver/plugins/baseuser.py:269 +msgid "User password expiration" +msgstr "" + +#: ipaserver/plugins/baseuser.py:273 ipaclient/remote_plugins/2_114/user.py:124 +msgid "Email address" +msgstr "" + +#: ipaserver/plugins/baseuser.py:278 ipaclient/remote_plugins/2_114/user.py:130 +msgid "Prompt to set the user password" +msgstr "" + +#: ipaserver/plugins/baseuser.py:284 ipaclient/remote_plugins/2_114/user.py:136 +msgid "Generate a random user password" +msgstr "" + +#: ipaserver/plugins/baseuser.py:295 ipaclient/remote_plugins/2_114/user.py:147 +msgid "User ID Number (system will assign one if not provided)" +msgstr "" + +#: ipaserver/plugins/baseuser.py:305 ipaclient/remote_plugins/2_114/user.py:158 +msgid "Street address" +msgstr "" + +#: ipaserver/plugins/baseuser.py:309 ipaclient/remote_plugins/2_114/user.py:163 +msgid "City" +msgstr "" + +#: ipaserver/plugins/baseuser.py:313 ipaclient/remote_plugins/2_114/user.py:168 +msgid "State/Province" +msgstr "" + +#: ipaserver/plugins/baseuser.py:316 ipaclient/remote_plugins/2_114/user.py:173 +msgid "ZIP" +msgstr "" + +#: ipaserver/plugins/baseuser.py:320 ipaclient/remote_plugins/2_114/user.py:179 +msgid "Telephone Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:323 ipaclient/remote_plugins/2_114/user.py:185 +msgid "Mobile Telephone Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:326 ipaclient/remote_plugins/2_114/user.py:191 +msgid "Pager Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:330 ipaclient/remote_plugins/2_114/user.py:197 +msgid "Fax Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:334 ipaclient/remote_plugins/2_114/user.py:202 +msgid "Org. Unit" +msgstr "" + +#: ipaserver/plugins/baseuser.py:337 ipaclient/remote_plugins/2_114/user.py:207 +msgid "Job Title" +msgstr "" + +#: ipaserver/plugins/baseuser.py:344 ipaclient/remote_plugins/2_114/user.py:218 +msgid "Car License" +msgstr "" + +#: ipaserver/plugins/baseuser.py:359 ipaclient/remote_plugins/2_114/user.py:235 +msgid "User authentication types" +msgstr "" + +#: ipaserver/plugins/baseuser.py:360 ipaclient/remote_plugins/2_114/user.py:236 +msgid "Types of supported user authentication" +msgstr "" + +#: ipaserver/plugins/baseuser.py:366 ipaclient/remote_plugins/2_114/user.py:243 +msgid "" +"User category (semantics placed on this attribute are for local " +"interpretation)" +msgstr "" + +#: ipaserver/plugins/baseuser.py:371 ipaclient/remote_plugins/2_114/user.py:248 +msgid "RADIUS proxy configuration" +msgstr "" + +#: ipaserver/plugins/baseuser.py:375 ipaclient/remote_plugins/2_114/user.py:253 +msgid "RADIUS proxy username" +msgstr "" + +#: ipaserver/plugins/baseuser.py:378 ipaclient/remote_plugins/2_114/user.py:259 +msgid "Department Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:381 ipaclient/remote_plugins/2_114/user.py:264 +msgid "Employee Number" +msgstr "" + +#: ipaserver/plugins/baseuser.py:384 ipaclient/remote_plugins/2_114/user.py:269 +msgid "Employee Type" +msgstr "" + +#: ipaserver/plugins/baseuser.py:387 ipaclient/remote_plugins/2_114/user.py:274 +msgid "Preferred Language" +msgstr "" + +#: ipaserver/plugins/baseuser.py:410 +msgid "SMB logon script path" +msgstr "" + +#: ipaserver/plugins/baseuser.py:415 +msgid "SMB profile path" +msgstr "" + +#: ipaserver/plugins/baseuser.py:420 +msgid "SMB Home Directory" +msgstr "" + +#: ipaserver/plugins/baseuser.py:425 +msgid "SMB Home Directory Drive" +msgstr "" + +#: ipaserver/plugins/baseuser.py:449 ipaserver/plugins/baseuser.py:453 +#, python-format +msgid "invalid e-mail format: %(email)s" +msgstr "" + +#: ipaserver/plugins/baseuser.py:480 +#, python-format +msgid "manager %(manager)s not found" +msgstr "" + +#: ipaserver/plugins/baseuser.py:825 +msgid "Issuer of the certificate" +msgstr "" + +#: ipaserver/plugins/baseuser.py:832 +msgid "Subject of the certificate" +msgstr "" + +#: ipaserver/plugins/baseuser.py:877 +msgid "cannot have an empty subject" +msgstr "" + +#: ipaserver/plugins/baseuser.py:917 +msgid "cannot specify both subject/issuer and certificate" +msgstr "" + +#: ipaserver/plugins/baseuser.py:921 +msgid "cannot specify both subject/issuer and ipacertmapdata" +msgstr "" + +#: ipaserver/plugins/baseuser.py:946 +#, python-format +msgid "Added certificate mappings to user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/baseuser.py:965 +#, python-format +msgid "Removed certificate mappings from user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/cert.py:68 +msgid "" +"\n" +"IPA certificate operations\n" +msgstr "" + +#: ipaserver/plugins/cert.py:70 +msgid "" +"\n" +"Implements a set of commands for managing server SSL certificates.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:72 +msgid "" +"\n" +"Certificate requests exist in the form of a Certificate Signing Request " +"(CSR)\n" +"in PEM format.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:75 +msgid "" +"\n" +"The dogtag CA uses just the CN value of the CSR and forces the rest of the\n" +"subject to values configured in the server.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:78 +msgid "" +"\n" +"A certificate is stored with a service principal and a service principal\n" +"needs a host.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:81 +msgid "" +"\n" +"In order to request a certificate:\n" +msgstr "" + +#: ipaserver/plugins/cert.py:83 +msgid "" +"\n" +"* The host must exist\n" +"* The service must exist (or you use the --add option to automatically add " +"it)\n" +msgstr "" + +#: ipaserver/plugins/cert.py:86 +msgid "" +"\n" +"SEARCHING:\n" +msgstr "" + +#: ipaserver/plugins/cert.py:88 +msgid "" +"\n" +"Certificates may be searched on by certificate subject, serial number,\n" +"revocation reason, validity dates and the issued date.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:91 +msgid "" +"\n" +"When searching on dates the _from date does a >= search and the _to date\n" +"does a <= search. When combined these are done as an AND.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:94 +msgid "" +"\n" +"Dates are treated as GMT to match the dates in the certificates.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:96 +msgid "" +"\n" +"The date format is YYYY-mm-dd.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:100 +msgid "" +"\n" +" Request a new certificate and add the principal:\n" +" ipa cert-request --add --principal=HTTP/lion.example.com example.csr\n" +msgstr "" + +#: ipaserver/plugins/cert.py:103 +msgid "" +"\n" +" Retrieve an existing certificate:\n" +" ipa cert-show 1032\n" +msgstr "" + +#: ipaserver/plugins/cert.py:106 +msgid "" +"\n" +" Revoke a certificate (see RFC 5280 for reason details):\n" +" ipa cert-revoke --revocation-reason=6 1032\n" +msgstr "" + +#: ipaserver/plugins/cert.py:109 +msgid "" +"\n" +" Remove a certificate from revocation hold status:\n" +" ipa cert-remove-hold 1032\n" +msgstr "" + +#: ipaserver/plugins/cert.py:112 +msgid "" +"\n" +" Check the status of a signing request:\n" +" ipa cert-status 10\n" +msgstr "" + +#: ipaserver/plugins/cert.py:115 +msgid "" +"\n" +" Search for certificates by hostname:\n" +" ipa cert-find --subject=ipaserver.example.com\n" +msgstr "" + +#: ipaserver/plugins/cert.py:118 +msgid "" +"\n" +" Search for revoked certificates by reason:\n" +" ipa cert-find --revocation-reason=5\n" +msgstr "" + +#: ipaserver/plugins/cert.py:121 +msgid "" +"\n" +" Search for certificates based on issuance date\n" +" ipa cert-find --issuedon-from=2013-02-01 --issuedon-to=2013-02-07\n" +msgstr "" + +#: ipaserver/plugins/cert.py:124 +msgid "" +"\n" +" Search for certificates owned by a specific user:\n" +" ipa cert-find --user=user\n" +msgstr "" + +#: ipaserver/plugins/cert.py:127 +msgid "" +"\n" +" Examine a certificate:\n" +" ipa cert-find --file=cert.pem --all\n" +msgstr "" + +#: ipaserver/plugins/cert.py:130 +msgid "" +"\n" +" Verify that a certificate is owned by a specific user:\n" +" ipa cert-find --file=cert.pem --user=user\n" +msgstr "" + +#: ipaserver/plugins/cert.py:133 +msgid "" +"\n" +"IPA currently immediately issues (or declines) all certificate requests so\n" +"the status of a request is not normally useful. This is for future use\n" +"or the case where a CA does not immediately issue a certificate.\n" +msgstr "" + +#: ipaserver/plugins/cert.py:137 +msgid "" +"\n" +"The following revocation reasons are supported:\n" +"\n" +msgstr "" + +#: ipaserver/plugins/cert.py:140 +msgid " * 0 - unspecified\n" +msgstr "" + +#: ipaserver/plugins/cert.py:141 +msgid " * 1 - keyCompromise\n" +msgstr "" + +#: ipaserver/plugins/cert.py:142 +msgid " * 2 - cACompromise\n" +msgstr "" + +#: ipaserver/plugins/cert.py:143 +msgid " * 3 - affiliationChanged\n" +msgstr "" + +#: ipaserver/plugins/cert.py:144 +msgid " * 4 - superseded\n" +msgstr "" + +#: ipaserver/plugins/cert.py:145 +msgid " * 5 - cessationOfOperation\n" +msgstr "" + +#: ipaserver/plugins/cert.py:146 +msgid " * 6 - certificateHold\n" +msgstr "" + +#: ipaserver/plugins/cert.py:147 +msgid " * 8 - removeFromCRL\n" +msgstr "" + +#: ipaserver/plugins/cert.py:148 +msgid " * 9 - privilegeWithdrawn\n" +msgstr "" + +#: ipaserver/plugins/cert.py:149 +msgid " * 10 - aACompromise\n" +msgstr "" + +#: ipaserver/plugins/cert.py:150 +msgid "" +"\n" +"Note that reason code 7 is not used. See RFC 5280 for more details:\n" +msgstr "" + +#: ipaserver/plugins/cert.py:152 +msgid "" +"\n" +"http://www.ietf.org/rfc/rfc5280.txt\n" +"\n" +msgstr "" + +#: ipaserver/plugins/cert.py:281 ipaserver/plugins/certprofile.py:86 +msgid "CA is not configured" +msgstr "" + +#: ipaserver/plugins/cert.py:287 +#, python-format +msgid "" +"Principal '%(principal)s' is not permitted to use CA '%(ca)s' with profile " +"'%(profile_id)s' for certificate issuance." +msgstr "" + +#: ipaserver/plugins/cert.py:307 +msgid "enabledService/configuredService not in ipaConfigString kdc entry" +msgstr "" + +#: ipaserver/plugins/cert.py:311 +#, python-format +msgid "Host '%(hostname)s' is not an active KDC" +msgstr "" + +#: ipaserver/plugins/cert.py:345 +msgid "Issuing CA" +msgstr "" + +#: ipaserver/plugins/cert.py:346 +msgid "Name of issuing CA" +msgstr "" + +#: ipaserver/plugins/cert.py:368 +msgid "Subject email address" +msgstr "" + +#: ipaserver/plugins/cert.py:373 +msgid "Subject DNS name" +msgstr "" + +#: ipaserver/plugins/cert.py:378 +msgid "Subject X.400 address" +msgstr "" + +#: ipaserver/plugins/cert.py:383 +msgid "Subject directory name" +msgstr "" + +#: ipaserver/plugins/cert.py:388 +msgid "Subject EDI Party name" +msgstr "" + +#: ipaserver/plugins/cert.py:393 +msgid "Subject URI" +msgstr "" + +#: ipaserver/plugins/cert.py:398 +msgid "Subject IP Address" +msgstr "" + +#: ipaserver/plugins/cert.py:403 +msgid "Subject OID" +msgstr "" + +#: ipaserver/plugins/cert.py:408 +msgid "Subject UPN" +msgstr "" + +#: ipaserver/plugins/cert.py:413 +msgid "Subject Kerberos principal name" +msgstr "" + +#: ipaserver/plugins/cert.py:418 +msgid "Subject Other Name" +msgstr "" + +#: ipaserver/plugins/cert.py:449 ipaclient/remote_plugins/2_114/cert.py:251 +msgid "Serial number" +msgstr "" + +#: ipaserver/plugins/cert.py:450 ipaclient/remote_plugins/2_114/cert.py:252 +msgid "Serial number in decimal or if prefixed with 0x in hexadecimal" +msgstr "" + +#: ipaserver/plugins/cert.py:456 +msgid "Serial number (hex)" +msgstr "" + +#: ipaserver/plugins/cert.py:576 ipaserver/plugins/certprofile.py:122 +#: ipaclient/plugins/csrgen.py:45 +msgid "Profile ID" +msgstr "" + +#: ipaserver/plugins/cert.py:577 ipaclient/remote_plugins/2_156/cert.py:298 +msgid "Certificate Profile to use" +msgstr "" + +#: ipaserver/plugins/cert.py:582 +msgid "Request status" +msgstr "" + +#: ipaserver/plugins/cert.py:587 ipaclient/remote_plugins/2_114/cert.py:367 +msgid "Request id" +msgstr "" + +#: ipaserver/plugins/cert.py:603 ipaclient/remote_plugins/2_114/cert.py:267 +msgid "Submit a certificate signing request." +msgstr "" + +#: ipaserver/plugins/cert.py:611 ipaclient/remote_plugins/2_114/cert.py:273 +msgid "CSR" +msgstr "" + +#: ipaserver/plugins/cert.py:621 ipaclient/plugins/csrgen.py:39 +msgid "Principal" +msgstr "" + +#: ipaserver/plugins/cert.py:622 ipaclient/plugins/csrgen.py:40 +msgid "Principal for this certificate (e.g. HTTP/test.example.com)" +msgstr "" + +#: ipaserver/plugins/cert.py:628 +msgid "" +"automatically add the principal if it doesn't exist (service principals only)" +msgstr "" + +#: ipaserver/plugins/cert.py:677 +#, python-format +msgid "krbtgt certs can use only the %s profile" +msgstr "" + +#: ipaserver/plugins/cert.py:729 +msgid "No Common Name was found in subject of request." +msgstr "" + +#: ipaserver/plugins/cert.py:737 +#, python-format +msgid "" +"hostname in subject of request '%(cn)s' does not match name or aliases of " +"principal '%(principal)s'" +msgstr "" + +#: ipaserver/plugins/cert.py:743 +#, python-format +msgid "" +"hostname in subject of request '%(cn)s' does not match principal hostname " +"'%(hostname)s'" +msgstr "" + +#: ipaserver/plugins/cert.py:752 +msgid "DN commonName does not match user's login" +msgstr "" + +#: ipaserver/plugins/cert.py:766 +msgid "DN emailAddress does not match any of user's email addresses" +msgstr "" + +#: ipaserver/plugins/cert.py:775 +#, python-format +msgid "" +"Insufficient 'write' privilege to the 'userCertificate' attribute of entry " +"'%s'." +msgstr "" + +#: ipaserver/plugins/cert.py:796 ipaserver/plugins/cert.py:914 +#, python-format +msgid "subject alt name type %s is forbidden for user principals" +msgstr "" + +#: ipaserver/plugins/cert.py:841 +#, python-format +msgid "" +"The service principal for subject alt name %s in certificate request does " +"not exist" +msgstr "" + +#: ipaserver/plugins/cert.py:872 +#, python-format +msgid "" +"Insufficient privilege to create a certificate with subject alt name '%s'." +msgstr "" + +#: ipaserver/plugins/cert.py:890 +#, python-format +msgid "Principal '%s' in subject alt name does not match requested principal" +msgstr "" + +#: ipaserver/plugins/cert.py:899 +msgid "RFC822Name does not match any of user's email addresses" +msgstr "" + +#: ipaserver/plugins/cert.py:906 +#, python-format +msgid "subject alt name type %s is forbidden for non-user principals" +msgstr "" + +#: ipaserver/plugins/cert.py:923 +#, python-format +msgid "Subject alt name type %s is forbidden" +msgstr "" + +#: ipaserver/plugins/cert.py:941 +#, python-format +msgid "CA '%s' is disabled" +msgstr "" + +#: ipaserver/plugins/cert.py:1028 +msgid "'add' option" +msgstr "" + +#: ipaserver/plugins/cert.py:1032 ipaclient/plugins/csrgen.py:109 +msgid "The principal for this request doesn't exist." +msgstr "" + +#: ipaserver/plugins/cert.py:1148 +#, python-format +msgid "IP address in subjectAltName (%s) unreachable from DNS names" +msgstr "" + +#: ipaserver/plugins/cert.py:1165 +#, python-format +msgid "IP address in subjectAltName (%s) does not have PTR record" +msgstr "" + +#: ipaserver/plugins/cert.py:1177 +#, python-format +msgid "PTR record for SAN IP (%s) does not match A/AAAA records" +msgstr "" + +#: ipaserver/plugins/cert.py:1242 ipaclient/remote_plugins/2_114/cert.py:362 +msgid "Check the status of a certificate signing request." +msgstr "" + +#: ipaserver/plugins/cert.py:1276 +msgid "Revoked" +msgstr "" + +#: ipaserver/plugins/cert.py:1282 +msgid "" +"Reason for revoking the certificate (0-10). Type \"ipa help cert\" for " +"revocation reason details. " +msgstr "" + +#: ipaserver/plugins/cert.py:1304 +#, python-format +msgid "Owner %s" +msgstr "" + +#: ipaserver/plugins/cert.py:1351 ipaclient/remote_plugins/2_114/cert.py:334 +msgid "Retrieve an existing certificate." +msgstr "" + +#: ipaserver/plugins/cert.py:1355 ipaclient/remote_plugins/2_114/cert.py:348 +msgid "Output filename" +msgstr "" + +#: ipaserver/plugins/cert.py:1356 ipaclient/remote_plugins/2_114/cert.py:349 +msgid "File to store the certificate in." +msgstr "" + +#: ipaserver/plugins/cert.py:1391 +#, python-format +msgid "" +"Certificate with serial number %(serial)s issued by CA '%(ca)s' not found" +msgstr "" + +#: ipaserver/plugins/cert.py:1425 ipaclient/remote_plugins/2_114/cert.py:306 +msgid "Revoke a certificate." +msgstr "" + +#: ipaserver/plugins/cert.py:1460 +msgid "7 is not a valid revocation reason" +msgstr "" + +#: ipaserver/plugins/cert.py:1473 ipaclient/remote_plugins/2_114/cert.py:246 +msgid "Take a revoked certificate off hold." +msgstr "" + +#: ipaserver/plugins/cert.py:1496 ipaclient/remote_plugins/2_114/cert.py:129 +msgid "Search for existing certificates." +msgstr "" + +#: ipaserver/plugins/cert.py:1501 ipaclient/remote_plugins/2_114/cert.py:135 +msgid "Match cn attribute in subject" +msgstr "" + +#: ipaserver/plugins/cert.py:1505 ipaclient/remote_plugins/2_114/cert.py:146 +msgid "minimum serial number" +msgstr "" + +#: ipaserver/plugins/cert.py:1511 ipaclient/remote_plugins/2_114/cert.py:151 +msgid "maximum serial number" +msgstr "" + +#: ipaserver/plugins/cert.py:1517 ipaclient/remote_plugins/2_114/cert.py:156 +msgid "match the common name exactly" +msgstr "" + +#: ipaserver/plugins/cert.py:1521 ipaclient/remote_plugins/2_114/cert.py:163 +msgid "Valid not after from this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1526 ipaclient/remote_plugins/2_114/cert.py:168 +msgid "Valid not after to this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1531 ipaclient/remote_plugins/2_114/cert.py:173 +msgid "Valid not before from this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1536 ipaclient/remote_plugins/2_114/cert.py:178 +msgid "Valid not before to this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1541 ipaclient/remote_plugins/2_114/cert.py:183 +msgid "Issued on from this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1546 ipaclient/remote_plugins/2_114/cert.py:188 +msgid "Issued on to this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1551 ipaclient/remote_plugins/2_114/cert.py:193 +msgid "Revoked on from this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1556 ipaclient/remote_plugins/2_114/cert.py:198 +msgid "Revoked on to this date (YYYY-mm-dd)" +msgstr "" + +#: ipaserver/plugins/cert.py:1562 +msgid "Results should contain primary key attribute only (\"certificate\")" +msgstr "" + +#: ipaserver/plugins/cert.py:1578 +#, python-format +msgid "%(count)d certificate matched" +msgid_plural "%(count)d certificates matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/idviews.py:889 -msgid "Display information about an ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:901 ipaserver/plugins/idviews.py:905 -msgid "User ID override" -msgstr "" - -#: ipaserver/plugins/idviews.py:902 ipaserver/plugins/idviews.py:904 -msgid "User ID overrides" -msgstr "" - -#: ipaserver/plugins/idviews.py:950 -msgid "User ID Number" -msgstr "" - -#: ipaserver/plugins/idviews.py:1017 ipaserver/plugins/idviews.py:1021 -msgid "Group ID override" -msgstr "" - -#: ipaserver/plugins/idviews.py:1018 ipaserver/plugins/idviews.py:1020 -msgid "Group ID overrides" -msgstr "" - -#: ipaserver/plugins/idviews.py:1062 -msgid "Add one or more certificates to the idoverrideuser entry" -msgstr "" - -#: ipaserver/plugins/idviews.py:1063 +#: ipaserver/plugins/cert.py:1600 #, python-format -msgid "Added certificates to idoverrideuser \"%(value)s\"" +msgid "Search for certificates with these owner %s." msgstr "" -#: ipaserver/plugins/idviews.py:1085 -msgid "Remove one or more certificates to the idoverrideuser entry" -msgstr "" - -#: ipaserver/plugins/idviews.py:1086 +#: ipaserver/plugins/cert.py:1611 #, python-format -msgid "Removed certificates from idoverrideuser \"%(value)s\"" +msgid "Search for certificates without these owner %s." msgstr "" -#: ipaserver/plugins/idviews.py:1109 -msgid "Add a new User ID override." +#: ipaserver/plugins/cert.py:1924 ipaclient/remote_plugins/2_114/cert.py:103 +msgid "Checks if any of the servers has the CA service enabled." msgstr "" -#: ipaserver/plugins/idviews.py:1110 -#, python-format -msgid "Added User ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1134 -msgid "Delete an User ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1135 -#, python-format -msgid "Deleted User ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1140 -msgid "Modify an User ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1141 -#, python-format -msgid "Modified an User ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1172 -msgid "Search for an User ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1173 -#, python-format -msgid "%(count)d User ID override matched" -msgid_plural "%(count)d User ID overrides matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/idviews.py:1196 -msgid "Display information about an User ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1208 -msgid "Add a new Group ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1209 -#, python-format -msgid "Added Group ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1214 -msgid "Delete an Group ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1215 -#, python-format -msgid "Deleted Group ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1220 -msgid "Modify an Group ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1221 -#, python-format -msgid "Modified an Group ID override \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/idviews.py:1226 -msgid "Search for an Group ID override." -msgstr "" - -#: ipaserver/plugins/idviews.py:1227 -#, python-format -msgid "%(count)d Group ID override matched" -msgid_plural "%(count)d Group ID overrides matched" -msgstr[0] "" -msgstr[1] "" - -#: ipaserver/plugins/idviews.py:1242 -msgid "Display information about an Group ID override." -msgstr "" - -#: ipaserver/plugins/role.py:36 ipaclient/remote_plugins/2_114/role.py:19 +#: ipaserver/plugins/certprofile.py:21 msgid "" "\n" -"Roles\n" +"Manage Certificate Profiles\n" "\n" -"A role is used for fine-grained delegation. A permission grants the ability\n" -"to perform given low-level tasks (add a user, modify a group, etc.). A\n" -"privilege combines one or more permissions into a higher-level abstraction\n" -"such as useradmin. A useradmin would be able to add, delete and modify " -"users.\n" +"Certificate Profiles are used by Certificate Authority (CA) in the signing " +"of\n" +"certificates to determine if a Certificate Signing Request (CSR) is " +"acceptable,\n" +"and if so what features and extensions will be present on the certificate.\n" "\n" -"Privileges are assigned to Roles.\n" +"The Certificate Profile format is the property-list format understood by " +"the\n" +"Dogtag or Red Hat Certificate System CA.\n" "\n" -"Users, groups, hosts and hostgroups may be members of a Role.\n" +"PROFILE ID SYNTAX:\n" "\n" -"Roles can not contain other roles.\n" +"A Profile ID is a string without spaces or punctuation starting with a " +"letter\n" +"and followed by a sequence of letters, digits or underscore (\"_\").\n" "\n" "EXAMPLES:\n" "\n" -" Add a new role:\n" -" ipa role-add --desc=\"Junior-level admin\" junioradmin\n" +" Import a profile that will not store issued certificates:\n" +" ipa certprofile-import ShortLivedUserCert \\\n" +" --file UserCert.profile --desc \"User Certificates\" \\\n" +" --store=false\n" "\n" -" Add some privileges to this role:\n" -" ipa role-add-privilege --privileges=addusers junioradmin\n" -" ipa role-add-privilege --privileges=change_password junioradmin\n" -" ipa role-add-privilege --privileges=add_user_to_default_group " -"junioradmin\n" +" Delete a certificate profile:\n" +" ipa certprofile-del ShortLivedUserCert\n" "\n" -" Add a group of users to this role:\n" -" ipa group-add --desc=\"User admins\" useradmins\n" -" ipa role-add-member --groups=useradmins junioradmin\n" +" Show information about a profile:\n" +" ipa certprofile-show ShortLivedUserCert\n" "\n" -" Display information about a role:\n" -" ipa role-show junioradmin\n" +" Save profile configuration to a file:\n" +" ipa certprofile-show caIPAserviceCert --out caIPAserviceCert.cfg\n" +"\n" +" Search for profiles that do not store certificates:\n" +" ipa certprofile-find --store=false\n" +"\n" +"PROFILE CONFIGURATION FORMAT:\n" +"\n" +"The profile configuration format is the raw property-list format\n" +"used by Dogtag Certificate System. The XML format is not supported.\n" +"\n" +"The following restrictions apply to profiles managed by FreeIPA:\n" +"\n" +"- When importing a profile the \"profileId\" field, if present, must\n" +" match the ID given on the command line.\n" +"\n" +"- The \"classId\" field must be set to \"caEnrollImpl\"\n" +"\n" +"- The \"auth.instance_id\" field must be set to \"raCertAuth\"\n" +"\n" +"- The \"certReqInputImpl\" input class and \"certOutputImpl\" output\n" +" class must be used.\n" "\n" -" The result of this is that any users in the group 'junioradmin' can\n" -" add users, reset passwords or add a user to the default IPA user group.\n" msgstr "" -#: ipaserver/plugins/role.py:140 -msgid "Role" +#: ipaserver/plugins/certprofile.py:95 +msgid "invalid Profile ID" msgstr "" -#: ipaserver/plugins/role.py:151 ipaclient/remote_plugins/2_114/role.py:69 -msgid "A description of this role-group" +#: ipaserver/plugins/certprofile.py:106 ipaserver/plugins/certprofile.py:116 +msgid "Certificate Profile" msgstr "" -#: ipaserver/plugins/role.py:159 ipaclient/remote_plugins/2_114/role.py:106 -msgid "Add a new role." +#: ipaserver/plugins/certprofile.py:107 ipaserver/plugins/certprofile.py:115 +msgid "Certificate Profiles" msgstr "" -#: ipaserver/plugins/role.py:161 +#: ipaserver/plugins/certprofile.py:123 +msgid "Profile ID for referring to this profile" +msgstr "" + +#: ipaserver/plugins/certprofile.py:126 +msgid "Profile configuration" +msgstr "" + +#: ipaserver/plugins/certprofile.py:132 +msgid "Profile description" +msgstr "" + +#: ipaserver/plugins/certprofile.py:133 +msgid "Brief description of this profile" +msgstr "" + +#: ipaserver/plugins/certprofile.py:138 +msgid "Store issued certificates" +msgstr "" + +#: ipaserver/plugins/certprofile.py:139 +msgid "Whether to store certs issued using this profile" +msgstr "" + +#: ipaserver/plugins/certprofile.py:188 +msgid "Search for Certificate Profiles." +msgstr "" + +#: ipaserver/plugins/certprofile.py:190 #, python-format -msgid "Added role \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/role.py:167 ipaclient/remote_plugins/2_114/role.py:333 -msgid "Delete a role." -msgstr "" - -#: ipaserver/plugins/role.py:169 -#, python-format -msgid "Deleted role \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/role.py:175 ipaclient/remote_plugins/2_114/role.py:459 -msgid "Modify a role." -msgstr "" - -#: ipaserver/plugins/role.py:177 -#, python-format -msgid "Modified role \"%(value)s\"" -msgstr "" - -#: ipaserver/plugins/role.py:183 ipaclient/remote_plugins/2_114/role.py:370 -msgid "Search for roles." -msgstr "" - -#: ipaserver/plugins/role.py:186 -#, python-format -msgid "%(count)d role matched" -msgid_plural "%(count)d roles matched" +msgid "%(count)d profile matched" +msgid_plural "%(count)d profiles matched" msgstr[0] "" msgstr[1] "" -#: ipaserver/plugins/role.py:193 ipaclient/remote_plugins/2_114/role.py:706 -msgid "Display information about a role." +#: ipaserver/plugins/certprofile.py:200 +msgid "Display the properties of a Certificate Profile." msgstr "" -#: ipaserver/plugins/role.py:199 ipaclient/remote_plugins/2_114/role.py:177 -msgid "Add members to a role." +#: ipaserver/plugins/certprofile.py:204 +msgid "Write profile configuration to file" msgstr "" -#: ipaserver/plugins/role.py:205 ipaclient/remote_plugins/2_114/role.py:550 -msgid "Remove members from a role." +#: ipaserver/plugins/certprofile.py:221 +msgid "Import a Certificate Profile." msgstr "" -#: ipaserver/plugins/role.py:211 ipaclient/remote_plugins/2_114/role.py:273 -msgid "Add privileges to a role." +#: ipaserver/plugins/certprofile.py:222 +#, python-format +msgid "Imported profile \"%(value)s\"" msgstr "" -#: ipaserver/plugins/role.py:226 ipaclient/remote_plugins/2_114/role.py:326 -msgid "Number of privileges added" +#: ipaserver/plugins/certprofile.py:226 +msgid "Filename of a raw profile. The XML format is not supported." msgstr "" -#: ipaserver/plugins/role.py:234 ipaclient/remote_plugins/2_114/role.py:646 -msgid "Remove privileges from a role." +#: ipaserver/plugins/certprofile.py:247 +#, python-format +msgid "Profile data specifies profileId multiple times: %(values)s" msgstr "" -#: ipaserver/plugins/role.py:251 ipaclient/remote_plugins/2_114/role.py:699 -msgid "Number of privileges removed" +#: ipaserver/plugins/certprofile.py:255 +#, python-format +msgid "Profile ID '%(cli_value)s' does not match profile data '%(file_value)s'" +msgstr "" + +#: ipaserver/plugins/certprofile.py:281 +msgid "Delete a Certificate Profile." +msgstr "" + +#: ipaserver/plugins/certprofile.py:282 +#, python-format +msgid "Deleted profile \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certprofile.py:289 +#, python-format +msgid "Predefined profile '%(profile_id)s' cannot be deleted" +msgstr "" + +#: ipaserver/plugins/certprofile.py:304 +msgid "Modify Certificate Profile configuration." +msgstr "" + +#: ipaserver/plugins/certprofile.py:305 +#, python-format +msgid "Modified Certificate Profile \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/certprofile.py:310 +msgid "File containing profile configuration" +msgstr "" + +#: ipaserver/plugins/certprofile.py:322 +msgid "Certificate profiles cannot be renamed" +msgstr "" + +#: ipaserver/plugins/certprofile.py:327 +msgid "Insufficient privilege to modify a certificate profile." msgstr "" #: ipaserver/plugins/sudocmd.py:33 @@ -19182,6 +19108,10 @@ msgstr "" msgid "Sudo Command Group" msgstr "" +#: ipaserver/plugins/sudocmdgroup.py:131 ipaserver/plugins/group.py:330 +msgid "Group description" +msgstr "" + #: ipaserver/plugins/sudocmdgroup.py:147 msgid "Create new Sudo Command Group." msgstr "" @@ -19566,153 +19496,286 @@ msgstr "" msgid "%i CAs removed." msgstr "" -#: ipaserver/plugins/krbtpolicy.py:27 +#: ipaserver/plugins/group.py:62 msgid "" "\n" -"Kerberos ticket policy\n" +"Groups of users\n" "\n" -"There is a single Kerberos ticket policy. This policy defines the\n" -"maximum ticket lifetime and the maximum renewal age, the period during\n" -"which the ticket is renewable.\n" +"Manage groups of users, groups, or services. By default, new groups are " +"POSIX\n" +"groups. You can add the --nonposix option to the group-add command to mark " +"a\n" +"new group as non-POSIX. You can use the --posix argument with the group-mod\n" +"command to convert a non-POSIX group into a POSIX group. POSIX groups cannot " +"be\n" +"converted to non-POSIX groups.\n" "\n" -"You can also create a per-user ticket policy by specifying the user login.\n" +"Every group must have a description.\n" "\n" -"For changes to the global policy to take effect, restarting the KDC service\n" -"is required, which can be achieved using:\n" +"POSIX groups must have a Group ID (GID) number. Changing a GID is\n" +"supported but can have an impact on your file permissions. It is not " +"necessary\n" +"to supply a GID when creating a group. IPA will generate one automatically\n" +"if it is not provided.\n" "\n" -"service krb5kdc restart\n" -"\n" -"Changes to per-user policies take effect immediately for newly requested\n" -"tickets (e.g. when the user next runs kinit).\n" +"Groups members can be users, other groups, and Kerberos services. In POSIX\n" +"environments only users will be visible as group members, but nested groups " +"and\n" +"groups of services can be used for IPA management purposes.\n" "\n" "EXAMPLES:\n" "\n" -" Display the current Kerberos ticket policy:\n" -" ipa krbtpolicy-show\n" +" Add a new group:\n" +" ipa group-add --desc='local administrators' localadmins\n" "\n" -" Reset the policy to the default:\n" -" ipa krbtpolicy-reset\n" +" Add a new non-POSIX group:\n" +" ipa group-add --nonposix --desc='remote administrators' remoteadmins\n" "\n" -" Modify the policy to 8 hours max life, 1-day max renewal:\n" -" ipa krbtpolicy-mod --maxlife=28800 --maxrenew=86400\n" +" Convert a non-POSIX group to posix:\n" +" ipa group-mod --posix remoteadmins\n" "\n" -" Display effective Kerberos ticket policy for user 'admin':\n" -" ipa krbtpolicy-show admin\n" +" Add a new POSIX group with a specific Group ID number:\n" +" ipa group-add --gid=500 --desc='unix admins' unixadmins\n" "\n" -" Reset per-user policy for user 'admin':\n" -" ipa krbtpolicy-reset admin\n" +" Add a new POSIX group and let IPA assign a Group ID number:\n" +" ipa group-add --desc='printer admins' printeradmins\n" "\n" -" Modify per-user policy for user 'admin':\n" -" ipa krbtpolicy-mod admin --maxlife=3600\n" +" Remove a group:\n" +" ipa group-del unixadmins\n" +"\n" +" To add the \"remoteadmins\" group to the \"localadmins\" group:\n" +" ipa group-add-member --groups=remoteadmins localadmins\n" +"\n" +" Add multiple users to the \"localadmins\" group:\n" +" ipa group-add-member --users=test1 --users=test2 localadmins\n" +"\n" +" To add Kerberos services to the \"printer admins\" group:\n" +" ipa group-add-member --services=CUPS/some.host printeradmins\n" +"\n" +" Remove a user from the \"localadmins\" group:\n" +" ipa group-remove-member --users=test2 localadmins\n" +"\n" +" Display information about a named group.\n" +" ipa group-show localadmins\n" +"\n" +"Group membership managers are users or groups that can add members to a\n" +"group or remove members from a group.\n" +"\n" +" Allow user \"test2\" to add or remove members from group \"localadmins\":\n" +" ipa group-add-member-manager --users=test2 localadmins\n" +"\n" +" Revoke membership management rights for user \"test2\" from \"localadmins" +"\":\n" +" ipa group-remove-member-manager --users=test2 localadmins\n" +"\n" +"External group membership is designed to allow users from trusted domains\n" +"to be mapped to local POSIX groups in order to actually use IPA resources.\n" +"External members should be added to groups that specifically created as\n" +"external and non-POSIX. Such group later should be included into one of " +"POSIX\n" +"groups.\n" +"\n" +"An external group member is currently a Security Identifier (SID) as defined " +"by\n" +"the trusted domain. When adding external group members, it is possible to\n" +"specify them in either SID, or DOM\\name, or name@domain format. IPA will " +"attempt\n" +"to resolve passed name to SID with the use of Global Catalog of the trusted " +"domain.\n" +"\n" +"Example:\n" +"\n" +"1. Create group for the trusted domain admins' mapping and their local POSIX " +"group:\n" +"\n" +" ipa group-add --desc=' admins external map' ad_admins_external " +"--external\n" +" ipa group-add --desc=' admins' ad_admins\n" +"\n" +"2. Add security identifier of Domain Admins of the to the " +"ad_admins_external\n" +" group:\n" +"\n" +" ipa group-add-member ad_admins_external --external 'AD\\Domain Admins'\n" +"\n" +"3. Allow members of ad_admins_external group to be associated with ad_admins " +"POSIX group:\n" +"\n" +" ipa group-add-member ad_admins --groups ad_admins_external\n" +"\n" +"4. List members of external members of ad_admins_external group to see their " +"SIDs:\n" +"\n" +" ipa group-show ad_admins_external\n" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:86 -msgid "kerberos ticket policy settings" +#: ipaserver/plugins/group.py:165 ipaclient/remote_plugins/2_114/group.py:304 +msgid "External member" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:135 -msgid "Manage ticket policy for specific user" +#: ipaserver/plugins/group.py:166 ipaclient/remote_plugins/2_114/group.py:305 +msgid "Members of a trusted domain in DOM\\name or name@domain form" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:140 -msgid "Max life" +#: ipaserver/plugins/group.py:194 +msgid "groups" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:141 -msgid "Maximum ticket life (seconds)" +#: ipaserver/plugins/group.py:315 +msgid "User Group" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:146 -msgid "Max renew" +#: ipaserver/plugins/group.py:335 ipaclient/remote_plugins/2_114/group.py:120 +msgid "GID (use this option to set it manually)" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:147 -msgid "Maximum renewable age (seconds)" +#: ipaserver/plugins/group.py:344 ipaclient/remote_plugins/2_114/group.py:197 +msgid "Create a new group." msgstr "" -#: ipaserver/plugins/krbtpolicy.py:152 -msgid "OTP max life" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:153 -msgid "OTP token maximum ticket life (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:157 -msgid "OTP max renew" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:158 -msgid "OTP token ticket maximum renewable age (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:162 -msgid "RADIUS max life" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:163 -msgid "RADIUS maximum ticket life (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:167 -msgid "RADIUS max renew" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:168 -msgid "RADIUS ticket maximum renewable age (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:172 -msgid "PKINIT max life" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:173 -msgid "PKINIT maximum ticket life (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:177 -msgid "PKINIT max renew" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:178 -msgid "PKINIT ticket maximum renewable age (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:182 -msgid "Hardened max life" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:183 -msgid "Hardened ticket maximum ticket life (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:187 -msgid "Hardened max renew" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:188 -msgid "Hardened ticket maximum renewable age (seconds)" -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:221 -msgid "Modify Kerberos ticket policy." -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:246 -msgid "Display the current Kerberos ticket policy." -msgstr "" - -#: ipaserver/plugins/krbtpolicy.py:272 +#: ipaserver/plugins/group.py:347 #, python-format -msgid "Ticket policy for %s could not be read" +msgid "Added group \"%(value)s\"" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:292 -msgid "Default ticket policy could not be read" +#: ipaserver/plugins/group.py:352 ipaclient/remote_plugins/2_114/group.py:238 +msgid "Create as a non-POSIX group" msgstr "" -#: ipaserver/plugins/krbtpolicy.py:300 -msgid "Reset Kerberos ticket policy to the default values." +#: ipaserver/plugins/group.py:357 ipaclient/remote_plugins/2_114/group.py:244 +msgid "Allow adding external non-IPA members from trusted domains" +msgstr "" + +#: ipaserver/plugins/group.py:370 +msgid "gid cannot be set for external group" +msgstr "" + +#: ipaserver/plugins/group.py:380 ipaclient/remote_plugins/2_114/group.py:366 +msgid "Delete group." +msgstr "" + +#: ipaserver/plugins/group.py:382 +#, python-format +msgid "Deleted group \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/group.py:396 +msgid "privileged group" +msgstr "" + +#: ipaserver/plugins/group.py:426 ipaclient/remote_plugins/2_114/group.py:669 +msgid "Modify a group." +msgstr "" + +#: ipaserver/plugins/group.py:429 +#, python-format +msgid "Modified group \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/group.py:434 ipaclient/remote_plugins/2_114/group.py:724 +msgid "change to a POSIX group" +msgstr "" + +#: ipaserver/plugins/group.py:438 ipaclient/remote_plugins/2_114/group.py:730 +msgid "change to support external non-IPA members from trusted domains" +msgstr "" + +#: ipaserver/plugins/group.py:498 ipaclient/remote_plugins/2_114/group.py:436 +msgid "Search for groups." +msgstr "" + +#: ipaserver/plugins/group.py:504 +#, python-format +msgid "%(count)d group matched" +msgid_plural "%(count)d groups matched" +msgstr[0] "" +msgstr[1] "" + +#: ipaserver/plugins/group.py:510 ipaclient/remote_plugins/2_114/group.py:481 +msgid "search for private groups" +msgstr "" + +#: ipaserver/plugins/group.py:514 ipaclient/remote_plugins/2_114/group.py:487 +msgid "search for POSIX groups" +msgstr "" + +#: ipaserver/plugins/group.py:518 ipaclient/remote_plugins/2_114/group.py:493 +msgid "" +"search for groups with support of external non-IPA members from trusted " +"domains" +msgstr "" + +#: ipaserver/plugins/group.py:522 ipaclient/remote_plugins/2_114/group.py:499 +msgid "search for non-POSIX groups" +msgstr "" + +#: ipaserver/plugins/group.py:569 ipaclient/remote_plugins/2_114/group.py:859 +msgid "Display information about a named group." +msgstr "" + +#: ipaserver/plugins/group.py:592 ipaclient/remote_plugins/2_114/group.py:288 +msgid "Add members to a group." +msgstr "" + +#: ipaserver/plugins/group.py:643 ipaclient/remote_plugins/2_114/group.py:781 +msgid "Remove members from a group." +msgstr "" + +#: ipaserver/plugins/group.py:700 ipaclient/remote_plugins/2_114/group.py:404 +msgid "Detach a managed group from a user." +msgstr "" + +#: ipaserver/plugins/group.py:703 +#, python-format +msgid "Detached group \"%(value)s\" from user \"%(value)s\"" +msgstr "" + +#: ipaserver/plugins/group.py:728 +msgid "not allowed to modify user entries" +msgstr "" + +#: ipaserver/plugins/group.py:739 +msgid "not allowed to modify group entries" +msgstr "" + +#: ipaserver/plugins/group.py:759 +msgid "Not a managed group" +msgstr "" + +#: ipaserver/plugins/group.py:781 +msgid "Add users that can manage members of this group." +msgstr "" + +#: ipaserver/plugins/group.py:789 +msgid "Remove users that can manage members of this group." +msgstr "" + +#: ipaserver/rpcserver.py:531 +msgid "Request must be a dict" +msgstr "" + +#: ipaserver/rpcserver.py:533 +msgid "Request is missing \"method\"" +msgstr "" + +#: ipaserver/rpcserver.py:535 +msgid "Request is missing \"params\"" +msgstr "" + +#: ipaserver/rpcserver.py:540 +msgid "params must be a list" +msgstr "" + +#: ipaserver/rpcserver.py:542 +msgid "params must contain [args, options]" +msgstr "" + +#: ipaserver/rpcserver.py:545 +msgid "params[0] (aka args) must be a list" +msgstr "" + +#: ipaserver/rpcserver.py:548 +msgid "params[1] (aka options) must be a dict" msgstr "" #: ipaserver/dcerpc_common.py:20 @@ -19752,20 +19815,6 @@ msgstr "" msgid "Non-transitive external trust to an RFC4120-compliant Kerberos realm" msgstr "" -#: ipaserver/servroles.py:296 -#, python-format -msgid "all masters must have %(role)s role enabled" -msgstr "" - -#: ipaserver/servroles.py:401 -#, python-format -msgid "must have %(role)s role enabled" -msgstr "" - -#: ipaserver/servroles.py:443 -msgid "must be enabled only on a single master" -msgstr "" - #: ipaserver/topology.py:14 #, python-format msgid "" @@ -19962,32 +20011,18 @@ msgstr "" msgid "Missing credentials for cross-forest communication" msgstr "" -#: ipaserver/rpcserver.py:504 -msgid "Request must be a dict" +#: ipaserver/servroles.py:296 +#, python-format +msgid "all masters must have %(role)s role enabled" msgstr "" -#: ipaserver/rpcserver.py:506 -msgid "Request is missing \"method\"" +#: ipaserver/servroles.py:401 +#, python-format +msgid "must have %(role)s role enabled" msgstr "" -#: ipaserver/rpcserver.py:508 -msgid "Request is missing \"params\"" -msgstr "" - -#: ipaserver/rpcserver.py:513 -msgid "params must be a list" -msgstr "" - -#: ipaserver/rpcserver.py:515 -msgid "params must contain [args, options]" -msgstr "" - -#: ipaserver/rpcserver.py:518 -msgid "params[0] (aka args) must be a list" -msgstr "" - -#: ipaserver/rpcserver.py:521 -msgid "params[1] (aka options) must be a dict" +#: ipaserver/servroles.py:443 +msgid "must be enabled only on a single master" msgstr "" #: ipatests/test_ipalib/test_frontend.py:206 @@ -20014,51 +20049,6 @@ msgstr "" msgid "must be at least 1" msgstr "" -#: util/ipa_krb5.c:799 util/ipa_krb5.c:814 -msgid "Out of memory\n" -msgstr "" - -#: util/ipa_krb5.c:832 -msgid "Warning unrecognized encryption type.\n" -msgstr "" - -#: util/ipa_krb5.c:846 -msgid "Warning unrecognized salt type.\n" -msgstr "" - -#: util/ipa_krb5.c:878 client/ipa-getkeytab.c:823 -#, c-format -msgid "No system preferred enctypes ?!\n" -msgstr "" - -#: util/ipa_krb5.c:886 -msgid "Out of memory!?\n" -msgstr "" - -#: util/ipa_krb5.c:921 -msgid "Enctype comparison failed!\n" -msgstr "" - -#: util/ipa_krb5.c:986 -msgid "Failed to create random key!\n" -msgstr "" - -#: util/ipa_krb5.c:999 util/ipa_krb5.c:1017 util/ipa_krb5.c:1025 -#: util/ipa_krb5.c:1065 -msgid "Failed to create key!\n" -msgstr "" - -#: util/ipa_krb5.c:1006 util/ipa_krb5.c:1040 client/ipa-join.c:404 -#: client/ipa-join.c:422 client/ipa-join.c:521 client/ipa-join.c:715 -#: client/ipa-join.c:779 -#, c-format -msgid "Out of memory!\n" -msgstr "" - -#: util/ipa_krb5.c:1051 -msgid "Bad or unsupported salt type.\n" -msgstr "" - #: util/ipa_ldap.c:79 #, c-format msgid "Unable to initialize connection to ldap server %1$s: %2$s\n" @@ -20094,6 +20084,55 @@ msgstr "" msgid "Unable to initialize STARTTLS session\n" msgstr "" +#: util/ipa_krb5.c:813 util/ipa_krb5.c:828 +msgid "Out of memory\n" +msgstr "" + +#: util/ipa_krb5.c:846 +msgid "Warning unrecognized encryption type.\n" +msgstr "" + +#: util/ipa_krb5.c:860 +msgid "Warning unrecognized salt type.\n" +msgstr "" + +#: util/ipa_krb5.c:892 client/ipa-getkeytab.c:835 +#, c-format +msgid "No system preferred enctypes ?!\n" +msgstr "" + +#: util/ipa_krb5.c:900 +msgid "Out of memory!?\n" +msgstr "" + +#: util/ipa_krb5.c:935 +msgid "Enctype comparison failed!\n" +msgstr "" + +#: util/ipa_krb5.c:988 +msgid "Password is too long!\n" +msgstr "" + +#: util/ipa_krb5.c:1004 +msgid "Failed to create random key!\n" +msgstr "" + +#: util/ipa_krb5.c:1017 util/ipa_krb5.c:1035 util/ipa_krb5.c:1043 +#: util/ipa_krb5.c:1083 +msgid "Failed to create key!\n" +msgstr "" + +#: util/ipa_krb5.c:1024 util/ipa_krb5.c:1058 client/ipa-join.c:404 +#: client/ipa-join.c:422 client/ipa-join.c:521 client/ipa-join.c:715 +#: client/ipa-join.c:779 +#, c-format +msgid "Out of memory!\n" +msgstr "" + +#: util/ipa_krb5.c:1069 +msgid "Bad or unsupported salt type.\n" +msgstr "" + #: client/ipa-rmkeytab.c:43 #, c-format msgid "Unable to parse principal name\n" @@ -20167,7 +20206,7 @@ msgid "" "The principal to remove from the keytab (ex: ftp/ftp.example.com@EXAMPLE.COM)" msgstr "" -#: client/ipa-rmkeytab.c:172 client/ipa-getkeytab.c:757 +#: client/ipa-rmkeytab.c:172 client/ipa-getkeytab.c:769 msgid "Kerberos Service Principal Name" msgstr "" @@ -20175,7 +20214,7 @@ msgstr "" msgid "The keytab file to remove the principcal(s) from" msgstr "" -#: client/ipa-rmkeytab.c:174 client/ipa-getkeytab.c:761 +#: client/ipa-rmkeytab.c:174 client/ipa-getkeytab.c:773 msgid "Keytab File Name" msgstr "" @@ -20183,7 +20222,7 @@ msgstr "" msgid "Remove all principals in this realm" msgstr "" -#: client/ipa-rmkeytab.c:190 client/ipa-getkeytab.c:810 +#: client/ipa-rmkeytab.c:190 client/ipa-getkeytab.c:822 #, c-format msgid "Kerberos context initialization failed\n" msgstr "" @@ -20426,6 +20465,26 @@ msgstr "" msgid "basedn" msgstr "" +#: client/config.c:56 +#, c-format +msgid "cannot open configuration file %s\n" +msgstr "" + +#: client/config.c:63 +#, c-format +msgid "cannot stat() configuration file %s\n" +msgstr "" + +#: client/config.c:69 +#, c-format +msgid "out of memory\n" +msgstr "" + +#: client/config.c:80 +#, c-format +msgid "read error\n" +msgstr "" + #: client/ipa-getkeytab.c:84 #, c-format msgid "Kerberos context initialization failed: %1$s (%2$d)\n" @@ -20539,252 +20598,237 @@ msgstr "" msgid "Failed to decode control reply!\n" msgstr "" -#: client/ipa-getkeytab.c:620 +#: client/ipa-getkeytab.c:603 +#, c-format +msgid "Passwords do not match!\n" +msgstr "" + +#: client/ipa-getkeytab.c:632 #, c-format msgid "Failed to open config file %s\n" msgstr "" -#: client/ipa-getkeytab.c:630 +#: client/ipa-getkeytab.c:642 #, c-format msgid "Failed to parse config file %s\n" msgstr "" -#: client/ipa-getkeytab.c:708 +#: client/ipa-getkeytab.c:720 msgid "Failed to resolve symlink to keytab.\n" msgstr "" -#: client/ipa-getkeytab.c:719 +#: client/ipa-getkeytab.c:731 msgid "keytab is a dangling symlink and owned by another user.\n" msgstr "" -#: client/ipa-getkeytab.c:751 +#: client/ipa-getkeytab.c:763 msgid "Print as little as possible" msgstr "" -#: client/ipa-getkeytab.c:751 +#: client/ipa-getkeytab.c:763 msgid "Output only on errors" msgstr "" -#: client/ipa-getkeytab.c:753 +#: client/ipa-getkeytab.c:765 msgid "Contact this specific KDC Server" msgstr "" -#: client/ipa-getkeytab.c:754 +#: client/ipa-getkeytab.c:766 msgid "Server Name" msgstr "" -#: client/ipa-getkeytab.c:756 +#: client/ipa-getkeytab.c:768 msgid "The principal to get a keytab for (ex: ftp/ftp.example.com@EXAMPLE.COM)" msgstr "" -#: client/ipa-getkeytab.c:759 +#: client/ipa-getkeytab.c:771 msgid "" "The keytab file to append the new key to (will be created if it does not " "exist)." msgstr "" -#: client/ipa-getkeytab.c:763 +#: client/ipa-getkeytab.c:775 msgid "Encryption types to request" msgstr "" -#: client/ipa-getkeytab.c:764 +#: client/ipa-getkeytab.c:776 msgid "Comma separated encryption types list" msgstr "" -#: client/ipa-getkeytab.c:766 +#: client/ipa-getkeytab.c:778 msgid "Show the list of permitted encryption types and exit" msgstr "" -#: client/ipa-getkeytab.c:767 +#: client/ipa-getkeytab.c:779 msgid "Permitted Encryption Types" msgstr "" -#: client/ipa-getkeytab.c:769 +#: client/ipa-getkeytab.c:781 msgid "Asks for a non-random password to use for the principal" msgstr "" -#: client/ipa-getkeytab.c:771 +#: client/ipa-getkeytab.c:783 msgid "LDAP DN" msgstr "" -#: client/ipa-getkeytab.c:771 +#: client/ipa-getkeytab.c:783 msgid "DN to bind as if not using kerberos" msgstr "" -#: client/ipa-getkeytab.c:773 +#: client/ipa-getkeytab.c:785 msgid "LDAP password" msgstr "" -#: client/ipa-getkeytab.c:773 +#: client/ipa-getkeytab.c:785 msgid "password to use if not using kerberos" msgstr "" -#: client/ipa-getkeytab.c:775 +#: client/ipa-getkeytab.c:787 msgid "Prompt for LDAP password" msgstr "" -#: client/ipa-getkeytab.c:777 +#: client/ipa-getkeytab.c:789 msgid "Path to the IPA CA certificate" msgstr "" -#: client/ipa-getkeytab.c:777 +#: client/ipa-getkeytab.c:789 msgid "IPA CA certificate" msgstr "" -#: client/ipa-getkeytab.c:779 +#: client/ipa-getkeytab.c:791 msgid "LDAP uri to connect to. Mutually exclusive with --server" msgstr "" -#: client/ipa-getkeytab.c:780 +#: client/ipa-getkeytab.c:792 msgid "url" msgstr "" -#: client/ipa-getkeytab.c:782 +#: client/ipa-getkeytab.c:794 msgid "LDAP SASL bind mechanism if no bindd/bindpw" msgstr "" -#: client/ipa-getkeytab.c:783 +#: client/ipa-getkeytab.c:795 msgid "GSSAPI|EXTERNAL" msgstr "" -#: client/ipa-getkeytab.c:785 +#: client/ipa-getkeytab.c:797 msgid "Retrieve current keys without changing them" msgstr "" -#: client/ipa-getkeytab.c:826 +#: client/ipa-getkeytab.c:838 #, c-format msgid "Supported encryption types:\n" msgstr "" -#: client/ipa-getkeytab.c:830 +#: client/ipa-getkeytab.c:842 #, c-format msgid "Warning: failed to convert type (#%d)\n" msgstr "" -#: client/ipa-getkeytab.c:848 +#: client/ipa-getkeytab.c:860 #, c-format msgid "Bind password already provided (-w).\n" msgstr "" -#: client/ipa-getkeytab.c:856 +#: client/ipa-getkeytab.c:868 msgid "Enter LDAP password" msgstr "" -#: client/ipa-getkeytab.c:864 +#: client/ipa-getkeytab.c:876 #, c-format msgid "Bind password required when using a bind DN (-w or -W).\n" msgstr "" -#: client/ipa-getkeytab.c:871 +#: client/ipa-getkeytab.c:883 #, c-format msgid "Cannot specify both SASL mechanism and bind DN simultaneously.\n" msgstr "" -#: client/ipa-getkeytab.c:879 +#: client/ipa-getkeytab.c:891 #, c-format msgid "Invalid SASL bind mechanism\n" msgstr "" -#: client/ipa-getkeytab.c:890 +#: client/ipa-getkeytab.c:902 #, c-format msgid "Cannot specify server and LDAP uri simultaneously.\n" msgstr "" -#: client/ipa-getkeytab.c:907 +#: client/ipa-getkeytab.c:919 #, c-format msgid "Server name not provided and unavailable\n" msgstr "" -#: client/ipa-getkeytab.c:923 +#: client/ipa-getkeytab.c:935 #, c-format msgid "Incompatible options provided (-r and -P)\n" msgstr "" -#: client/ipa-getkeytab.c:928 +#: client/ipa-getkeytab.c:940 msgid "New Principal Password" msgstr "" -#: client/ipa-getkeytab.c:929 +#: client/ipa-getkeytab.c:941 msgid "Verify Principal Password" msgstr "" -#: client/ipa-getkeytab.c:935 +#: client/ipa-getkeytab.c:947 #, c-format msgid "" "Warning: salt types are not honored with randomized passwords (see opt. -P)\n" msgstr "" -#: client/ipa-getkeytab.c:942 +#: client/ipa-getkeytab.c:954 #, c-format msgid "Invalid Service Principal Name\n" msgstr "" -#: client/ipa-getkeytab.c:950 +#: client/ipa-getkeytab.c:962 #, c-format msgid "Kerberos Credential Cache not found. Do you have a Kerberos Ticket?\n" msgstr "" -#: client/ipa-getkeytab.c:958 +#: client/ipa-getkeytab.c:970 #, c-format msgid "" "Kerberos User Principal not found. Do you have a valid Credential Cache?\n" msgstr "" -#: client/ipa-getkeytab.c:972 +#: client/ipa-getkeytab.c:984 #, c-format msgid "Failed to open Keytab\n" msgstr "" -#: client/ipa-getkeytab.c:990 +#: client/ipa-getkeytab.c:1002 #, c-format msgid "Retrying with pre-4.0 keytab retrieval method...\n" msgstr "" -#: client/ipa-getkeytab.c:1000 +#: client/ipa-getkeytab.c:1012 #, c-format msgid "Failed to create key material\n" msgstr "" -#: client/ipa-getkeytab.c:1009 +#: client/ipa-getkeytab.c:1022 #, c-format msgid "Failed to get keytab\n" msgstr "" -#: client/ipa-getkeytab.c:1023 +#: client/ipa-getkeytab.c:1036 #, c-format msgid "Failed to add key to the keytab\n" msgstr "" -#: client/ipa-getkeytab.c:1032 +#: client/ipa-getkeytab.c:1045 #, c-format msgid "Failed to close the keytab\n" msgstr "" -#: client/ipa-getkeytab.c:1038 +#: client/ipa-getkeytab.c:1051 #, c-format msgid "Keytab successfully retrieved and stored in: %s\n" msgstr "" -#: client/config.c:56 -#, c-format -msgid "cannot open configuration file %s\n" -msgstr "" - -#: client/config.c:63 -#, c-format -msgid "cannot stat() configuration file %s\n" -msgstr "" - -#: client/config.c:69 -#, c-format -msgid "out of memory\n" -msgstr "" - -#: client/config.c:80 -#, c-format -msgid "read error\n" -msgstr "" - #: ipaclient/plugins/automount.py:101 msgid "maps not connected to /etc/auto.master:" msgstr "" @@ -24708,6 +24752,67 @@ msgstr "" msgid "Managed suffix" msgstr "" +msgid "" +"\n" +"Service Constrained Delegation\n" +"\n" +"Manage rules to allow constrained delegation of credentials so\n" +"that a service can impersonate a user when communicating with another\n" +"service without requiring the user to actually forward their TGT.\n" +"This makes for a much better method of delegating credentials as it\n" +"prevents exposure of the short term secret of the user.\n" +"\n" +"The naming convention is to append the word \"target\" or \"targets\" to\n" +"a matching rule name. This is not mandatory but helps conceptually\n" +"to associate rules and targets.\n" +"\n" +"A rule consists of two things:\n" +" - A list of targets the rule applies to\n" +" - A list of memberPrincipals that are allowed to delegate for\n" +" those targets\n" +"\n" +"A target consists of a list of principals that can be delegated.\n" +"\n" +"In English, a rule says that this principal can delegate as this\n" +"list of principals, as defined by these targets.\n" +"\n" +"EXAMPLES:\n" +"\n" +" Add a new constrained delegation rule:\n" +" ipa servicedelegationrule-add ftp-delegation\n" +"\n" +" Add a new constrained delegation target:\n" +" ipa servicedelegationtarget-add ftp-delegation-target\n" +"\n" +" Add a principal to the rule:\n" +" ipa servicedelegationrule-add-member --principals=ftp/ipa.example." +"com ftp-delegation\n" +"\n" +" Add our target to the rule:\n" +" ipa servicedelegationrule-add-target --servicedelegationtargets=ftp-" +"delegation-target ftp-delegation\n" +"\n" +" Add a principal to the target:\n" +" ipa servicedelegationtarget-add-member --principals=ldap/ipa.example." +"com ftp-delegation-target\n" +"\n" +" Display information about a named delegation rule and target:\n" +" ipa servicedelegationrule_show ftp-delegation\n" +" ipa servicedelegationtarget_show ftp-delegation-target\n" +"\n" +" Remove a constrained delegation:\n" +" ipa servicedelegationrule-del ftp-delegation-target\n" +" ipa servicedelegationtarget-del ftp-delegation\n" +"\n" +"In this example the ftp service can get a TGT for the ldap service on\n" +"the bound user's behalf.\n" +"\n" +"It is strongly discouraged to modify the delegations that ship with\n" +"IPA, ipa-http-delegation and its targets ipa-cifs-delegation-targets and\n" +"ipa-ldap-delegation-targets. Incorrect changes can remove the ability\n" +"to delegate, causing the framework to stop functioning.\n" +msgstr "" + msgid "member principal" msgstr "" diff --git a/po/ja.po b/po/ja.po index a1a696a44..c6300fba1 100644 --- a/po/ja.po +++ b/po/ja.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Japanese\n" @@ -258,7 +258,6 @@ msgstr "パスワードポリシー" msgid "Passwords do not match" msgstr "パスワードが違います" -#, c-format msgid "Passwords do not match!" msgstr "パスワードが違います。" diff --git a/po/kn.po b/po/kn.po index cd86a7986..80c48e5bf 100644 --- a/po/kn.po +++ b/po/kn.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Kannada\n" @@ -422,7 +422,6 @@ msgstr "ದೊಡ್ಡ ಪ್ರಮಾಣದ ದಾಖಲಾತಿಯಲ್ಲ msgid "Passwords do not match" msgstr "ಗುಪ್ತಪದಗಳು ಹೊಂದಾಣಿಕೆಯಾಗುತ್ತಿಲ್ಲ" -#, c-format msgid "Passwords do not match!" msgstr "ಗುಪ್ತಪದಗಳು ಹೊಂದಾಣಿಕೆಯಾಗುತ್ತಿಲ್ಲ!" diff --git a/po/mr.po b/po/mr.po index 939032d51..79ef34894 100644 --- a/po/mr.po +++ b/po/mr.po @@ -2,8 +2,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Marathi\n" @@ -48,7 +48,6 @@ msgstr "कोणतीही फाइल वाचण्यासाठी न msgid "No matching entries found" msgstr "कोणतेही जुळणारे नोंदी आढळले" -#, c-format msgid "Passwords do not match!" msgstr "पासवर्ड जुळत नाही!" diff --git a/po/nl.po b/po/nl.po index 7f2913d7a..b46eab870 100644 --- a/po/nl.po +++ b/po/nl.po @@ -2,8 +2,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Dutch\n" @@ -14,6 +14,5 @@ msgstr "" "Plural-Forms: nplurals=2; plural=(n != 1)\n" "X-Generator: Zanata 4.6.2\n" -#, c-format msgid "Passwords do not match!" msgstr "Wachtwoorden komen niet overeen!" diff --git a/po/pl.po b/po/pl.po index e64bc1aa8..03987947d 100644 --- a/po/pl.po +++ b/po/pl.po @@ -3,7 +3,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:39+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Polish\n" @@ -949,7 +949,6 @@ msgstr "Hasło używane w zapisywaniu większej części" msgid "Passwords do not match" msgstr "Hasła się nie zgadzają" -#, c-format msgid "Passwords do not match!" msgstr "Hasła się nie zgadzają." diff --git a/po/pt_BR.po b/po/pt_BR.po index 2fa926e83..24707e30c 100644 --- a/po/pt_BR.po +++ b/po/pt_BR.po @@ -2,8 +2,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Portuguese (Brazil)\n" @@ -32,7 +32,6 @@ msgstr "Não foram encontradas entradas coincidentes" msgid "Passwords do not match" msgstr "As senhas não coincidem." -#, c-format msgid "Passwords do not match!" msgstr "As senhas não coincidem!" diff --git a/po/ru.po b/po/ru.po index 7d663a7a8..d2991b334 100644 --- a/po/ru.po +++ b/po/ru.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:39+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-12 12:31+0000\n" "Last-Translator: Olesya Gerasimenko \n" "Language-Team: Russian\n" @@ -23791,7 +23791,6 @@ msgstr "Пароль для массовой регистрации" msgid "Passwords do not match" msgstr "Пароли не совпадают" -#, c-format msgid "Passwords do not match!" msgstr "Пароли не совпадают!" @@ -27612,9 +27611,6 @@ msgstr "" "На этой странице имеются несохранённые изменения. Пожалуйста, сохраните или " "отмените их. " -msgid "This principal is required by the IPA master" -msgstr "Эта учётная запись необходима главному IPA-серверу " - msgid "Ticket expired" msgstr "Срок действия билета истек" @@ -30147,3 +30143,6 @@ msgstr "{attr}: атрибут не найден" #, python-brace-format msgid "{role}: role not found" msgstr "{role}: роль не найдена" + +#~ msgid "This principal is required by the IPA master" +#~ msgstr "Эта учётная запись необходима главному IPA-серверу " diff --git a/po/sk.po b/po/sk.po index 0baf6d708..a95feef20 100644 --- a/po/sk.po +++ b/po/sk.po @@ -2,8 +2,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:26+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Slovak\n" @@ -1713,7 +1713,6 @@ msgstr "Nastavenie hesla nebolo úspešné" msgid "Passwords do not match" msgstr "Heslá sa nezhodujú" -#, c-format msgid "Passwords do not match!" msgstr "Heslá sa nezhodujú!" diff --git a/po/tg.po b/po/tg.po index 5df18adaf..8da9e4fa7 100644 --- a/po/tg.po +++ b/po/tg.po @@ -6,8 +6,8 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" -"Report-Msgid-Bugs-To: https://fedorahosted.org/freeipa/newticket\n" -"POT-Creation-Date: 2019-08-14 10:13+0300\n" +"Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:26+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Tajik\n" @@ -213,7 +213,6 @@ msgstr "Парол" msgid "Passwords do not match" msgstr "Паролҳо номувофиқанд" -#, c-format msgid "Passwords do not match!" msgstr "Паролҳо номувофиқанд!" diff --git a/po/uk.po b/po/uk.po index a17396796..3f52fe635 100644 --- a/po/uk.po +++ b/po/uk.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:39+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 08:08+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Ukrainian \n" @@ -23856,7 +23856,6 @@ msgstr "Пароль для загального керування реєстр msgid "Passwords do not match" msgstr "Паролі не збігаються" -#, c-format msgid "Passwords do not match!" msgstr "Паролі не збігаються!" @@ -27623,9 +27622,6 @@ msgstr "" "На цій сторінці виявлено незбережені зміни. Будь ласка, збережіть зміни або " "скасуйте їх." -msgid "This principal is required by the IPA master" -msgstr "Цей реєстраційний запис потрібен основному серверу IPA" - msgid "Ticket expired" msgstr "Сплив строк дії квитка" @@ -30158,3 +30154,6 @@ msgstr "{attr}: немає такого атрибута" #, python-brace-format msgid "{role}: role not found" msgstr "{role}: такої ролі не знайдено" + +#~ msgid "This principal is required by the IPA master" +#~ msgstr "Цей реєстраційний запис потрібен основному серверу IPA" diff --git a/po/zh_CN.po b/po/zh_CN.po index dec79967d..66ab43064 100644 --- a/po/zh_CN.po +++ b/po/zh_CN.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: freeipa 4.9.0.dev201908140712+gitc9938e3d8\n" "Report-Msgid-Bugs-To: https://pagure.io/freeipa/new_issue\n" -"POT-Creation-Date: 2020-03-23 20:39+0200\n" +"POT-Creation-Date: 2020-06-10 22:26+0300\n" "PO-Revision-Date: 2019-11-11 10:25+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Chinese (China)\n" @@ -7416,7 +7416,6 @@ msgstr "密码用于批量注册" msgid "Passwords do not match" msgstr "密码不匹配" -#, c-format msgid "Passwords do not match!" msgstr "密码不匹配!" @@ -10183,9 +10182,6 @@ msgstr "这可能需要一些时间,请稍等..." msgid "This page has unsaved changes. Please save or revert." msgstr "这个页面有未保存的更改。请保存或恢复。" -msgid "This principal is required by the IPA master" -msgstr "这个主体是IPA主服务器所需的" - msgid "Ticket expired" msgstr "票据过期" @@ -12260,3 +12256,6 @@ msgstr "{attr}:没有这样的属性" #, python-brace-format msgid "{role}: role not found" msgstr "{role}:角色没有找到" + +#~ msgid "This principal is required by the IPA master" +#~ msgstr "这个主体是IPA主服务器所需的"