Fix replica setup using replication admin kerberos credentials

Fixes: https://fedorahosted.org/freeipa/ticket/1022
This commit is contained in:
Simo Sorce 2011-02-25 18:23:10 -05:00
parent 2028695d88
commit b6ca0f210c
2 changed files with 7 additions and 1 deletions

View File

@ -1,5 +1,10 @@
# Replica administration
dn: cn=config
changetype: modify
add: aci
aci: (targetattr != aci)(version 3.0; aci "replica admins read access"; allow (read, search, compare) groupdn = "ldap:///cn=Modify Replication Agreements,cn=permissions,cn=pbac,$SUFFIX";)
dn: cn="$SUFFIX",cn=mapping tree,cn=config
changetype: modify
add: aci

View File

@ -592,7 +592,8 @@ class ReplicationManager:
return self.wait_for_repl_init(conn, dn)
def basic_replication_setup(self, conn, replica_id, repldn, replpw):
self.add_replication_manager(conn, repldn, replpw)
if replpw is not None:
self.add_replication_manager(conn, repldn, replpw)
self.replica_config(conn, replica_id, repldn)
self.setup_changelog(conn)