IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Allow SASL/EXTERNAL authentication for the root user

Browse Source 
This gives the root user low privileges so that when anonymous searches are
denied the init scripts can still search the directory via ldapi to get the
list of serevices to start.

Fixes: https://fedorahosted.org/freeipa/ticket/795
This commit is contained in:
Simo Sorce
2011-01-19 15:17:25 -05:00
parent 5af80a7583
commit 861aa9c1b8
4 changed files with 34 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ipaserver/install/dsinstance.py
View File

@@ -207,6 +207,7 @@ class DsInstance(service.Service):
self.step("creating indices", self.__create_indices)
self.step("configuring ssl for ds instance", self.__enable_ssl)
self.step("configuring certmap.conf", self.__certmap_conf)
self.step("configure autobind for root", self.__root_autobind)
self.step("restarting directory server", self.__restart_instance)
def __common_post_setup(self):
@@ -728,3 +729,7 @@ class DsInstance(service.Service):
def __tuning(self):
self.tune_nofile(8192)
def __root_autobind(self):
self._ldap_mod("root-autobind.ldif")