Enable automember for upgraded servers

automember functionality is depends on predefined data is in LDAP. Since we add it for fresh installs only, automember cannot be used for upgraded servers. Make sure that automember LDAP data is added during upgrade too. https://fedorahosted.org/freeipa/ticket/1992
2025-02-25 18:55:28 -06:00 · 2011-10-17 13:56:21 +02:00 · 2011-10-17 13:56:21 +02:00 · 9cdeabc778
commit 9cdeabc778
parent 216505d2a0
2 changed files with 23 additions and 0 deletions
--- a/install/updates/40-automember.update
+++ b/install/updates/40-automember.update
@ -0,0 +1,22 @@
+# Add all supported automember LDAP objects
+dn: cn=Auto Membership Plugin,cn=plugins,cn=config
+addifnew: nsslapd-pluginConfigArea: 'cn=automember,cn=etc,$SUFFIX'
+
+dn: cn=automember,cn=etc,$SUFFIX
+default: objectClass: top
+default: objectClass: nsContainer
+default: cn: automember
+
+dn: cn=Hostgroup,cn=automember,cn=etc,$SUFFIX
+default: objectclass: autoMemberDefinition
+default: cn: Hostgroup
+default: autoMemberScope: cn=computers,cn=accounts,$SUFFIX
+default: autoMemberFilter: objectclass=ipaHost
+default: autoMemberGroupingAttr: member:dn
+
+dn: cn=Group,cn=automember,cn=etc,$SUFFIX
+default: objectclass: autoMemberDefinition
+default: cn: Group
+default: autoMemberScope: cn=users,cn=accounts,$SUFFIX
+default: autoMemberFilter: objectclass=posixAccount
+default: autoMemberGroupingAttr: member:dn
--- a/install/updates/Makefile.am
+++ b/install/updates/Makefile.am
@ -20,6 +20,7 @@ app_DATA =				\
 	21-replicas_container.update	\
 	40-delegation.update		\
 	40-dns.update			\
+	40-automember.update		\
 	45-roles.update			\
 	50-lockout-policy.update	\
 	50-groupuuid.update		\