mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-25 08:21:05 -06:00
Fix installation
Add missing schema for GUI Config, and missing objectclass for cn=accounts container
This commit is contained in:
parent
d5c269c8eb
commit
a0d8d87b97
37
ipa-server/ipa-install/share/60ipaconfig.ldif
Normal file
37
ipa-server/ipa-install/share/60ipaconfig.ldif
Normal file
@ -0,0 +1,37 @@
|
|||||||
|
## schema file for ipa configuration
|
||||||
|
##
|
||||||
|
## IPA Base OID: 2.16.840.1.113730.3.8
|
||||||
|
##
|
||||||
|
## Attributes: 2.16.840.1.113730.3.8.1
|
||||||
|
## ObjectClasses: 2.16.840.1.113730.3.8.2
|
||||||
|
dn: cn=schema
|
||||||
|
###############################################
|
||||||
|
##
|
||||||
|
## Attributes
|
||||||
|
##
|
||||||
|
## ipaUserSearchFields - attribute names to search against when looking for users
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.1 NAME 'ipaUserSearchFields' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
|
||||||
|
## ipaGroupSearchFields - attribute names to search against when looking for groups
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.2 NAME 'ipaGroupSearchFields' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
|
||||||
|
## ipaSearchTimeLimit - search time limit in seconds
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.3 NAME 'ipaSearchTimeLimit' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE)
|
||||||
|
## ipaSearchRecordsLimit - maximum number of records to return
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.4 NAME 'ipaSearchRecordsLimit' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE)
|
||||||
|
## ipaCustomFields - custom fields to show in the UI in addition to pre-defined ones
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.5 NAME 'ipaCustomFields' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15)
|
||||||
|
## ipaHomesRootDir - default posix home directory root dir to use when creating new accounts
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.6 NAME 'ipaHomesRootDir' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE)
|
||||||
|
## ipaDefaultLoginShell - default posix login shell to use when creating new accounts
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.7 NAME 'ipaDefaultLoginShell' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE)
|
||||||
|
## ipaDefaultPrimaryGroup - default posix primary group to assign when creating new accounts
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.8 NAME 'ipaDefaultPrimaryGroup' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE)
|
||||||
|
## ipaMaxUsernameLength - maximum username length to allow in the UI
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.9 NAME 'ipaMaxUsernameLength' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE)
|
||||||
|
## ipaPwdExpAdvNotify - time in days to send out paswwrod expiration notification before passwpord actually expires
|
||||||
|
attributetypes: ( 2.16.840.1.113730.3.8.1.10 NAME 'ipaPwdExpAdvNotify' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE)
|
||||||
|
###############################################
|
||||||
|
##
|
||||||
|
## ObjectClasses
|
||||||
|
##
|
||||||
|
## ipaGuiConfig - GUI config parameters objectclass
|
||||||
|
objectClasses: ( 2.16.840.1.113730.3.8.2.1 NAME 'ipaGuiConfig' AUXILIARY MAY ( ipaUserSearchFields $ ipaGroupSearchFields $ ipaSearchTimeLimit $ ipaSearchRecordsLimit $ ipaCustomFields $ ipaHomesRootDir $ ipaDefaultLoginShell $ ipaDefaultPrimaryGroup $ ipaMaxUsernameLength $ ipaPwdExpAdvNotify ) )
|
@ -5,6 +5,7 @@ app_DATA = \
|
|||||||
60kerberos.ldif \
|
60kerberos.ldif \
|
||||||
60samba.ldif \
|
60samba.ldif \
|
||||||
60radius.ldif \
|
60radius.ldif \
|
||||||
|
60ipaconfig.ldif \
|
||||||
bootstrap-template.ldif \
|
bootstrap-template.ldif \
|
||||||
default-aci.ldif \
|
default-aci.ldif \
|
||||||
kerberos.ldif \
|
kerberos.ldif \
|
||||||
|
@ -8,6 +8,7 @@ dn: cn=accounts,$SUFFIX
|
|||||||
changetype: add
|
changetype: add
|
||||||
objectClass: top
|
objectClass: top
|
||||||
objectClass: nsContainer
|
objectClass: nsContainer
|
||||||
|
objectClass: krbPwdPolicy
|
||||||
cn: accounts
|
cn: accounts
|
||||||
krbMinPwdLife: 3600
|
krbMinPwdLife: 3600
|
||||||
krbPwdMinDiffChars: 0
|
krbPwdMinDiffChars: 0
|
||||||
|
@ -170,6 +170,8 @@ class DsInstance(service.Service):
|
|||||||
self.schema_dirname() + "60samba.ldif")
|
self.schema_dirname() + "60samba.ldif")
|
||||||
shutil.copyfile(SHARE_DIR + "60radius.ldif",
|
shutil.copyfile(SHARE_DIR + "60radius.ldif",
|
||||||
self.schema_dirname() + "60radius.ldif")
|
self.schema_dirname() + "60radius.ldif")
|
||||||
|
shutil.copyfile(SHARE_DIR + "60ipaconfig.ldif",
|
||||||
|
self.schema_dirname() + "60ipaconfig.ldif")
|
||||||
|
|
||||||
def __add_memberof_module(self):
|
def __add_memberof_module(self):
|
||||||
self.step("enabling memboerof plugin")
|
self.step("enabling memboerof plugin")
|
||||||
|
Loading…
Reference in New Issue
Block a user