mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-24 16:10:02 -06:00
Fix replica setup using replication admin kerberos credentials
Fixes: https://fedorahosted.org/freeipa/ticket/1022
This commit is contained in:
parent
2028695d88
commit
b6ca0f210c
@ -1,5 +1,10 @@
|
||||
# Replica administration
|
||||
|
||||
dn: cn=config
|
||||
changetype: modify
|
||||
add: aci
|
||||
aci: (targetattr != aci)(version 3.0; aci "replica admins read access"; allow (read, search, compare) groupdn = "ldap:///cn=Modify Replication Agreements,cn=permissions,cn=pbac,$SUFFIX";)
|
||||
|
||||
dn: cn="$SUFFIX",cn=mapping tree,cn=config
|
||||
changetype: modify
|
||||
add: aci
|
||||
|
@ -592,7 +592,8 @@ class ReplicationManager:
|
||||
return self.wait_for_repl_init(conn, dn)
|
||||
|
||||
def basic_replication_setup(self, conn, replica_id, repldn, replpw):
|
||||
self.add_replication_manager(conn, repldn, replpw)
|
||||
if replpw is not None:
|
||||
self.add_replication_manager(conn, repldn, replpw)
|
||||
self.replica_config(conn, replica_id, repldn)
|
||||
self.setup_changelog(conn)
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user