mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-23 23:50:03 -06:00
named.conf template: update API for bind 9.11
Use the new API for bind 9.11. Removed deprecated "serial_autoincrement" and updated the rest of configuration to conform to the new format. This only fixes new IPA installations. For existing installations, named.conf will be transformed when the new version of bind-dyndb-ldap is installed. https://fedorahosted.org/freeipa/ticket/6565 Reviewed-By: Martin Basti <mbasti@redhat.com>
This commit is contained in:
parent
c26dd805bd
commit
e8a2abd548
@ -43,13 +43,11 @@ zone "." IN {
|
||||
include "$RFC1912_ZONES";
|
||||
include "$ROOT_KEY";
|
||||
|
||||
dynamic-db "ipa" {
|
||||
library "ldap.so";
|
||||
arg "uri ldapi://%2fvar%2frun%2fslapd-$SERVER_ID.socket";
|
||||
arg "base cn=dns, $SUFFIX";
|
||||
arg "server_id $FQDN";
|
||||
arg "auth_method sasl";
|
||||
arg "sasl_mech GSSAPI";
|
||||
arg "sasl_user DNS/$FQDN";
|
||||
arg "serial_autoincrement yes";
|
||||
dyndb "ipa" "$BIND_LDAP_SO" {
|
||||
uri "ldapi://%2fvar%2frun%2fslapd-$SERVER_ID.socket";
|
||||
base "cn=dns, $SUFFIX";
|
||||
server_id "$FQDN";
|
||||
auth_method "sasl";
|
||||
sasl_mech "GSSAPI";
|
||||
sasl_user "DNS/$FQDN";
|
||||
};
|
||||
|
@ -33,6 +33,7 @@ class RedHatPathNamespace(BasePathNamespace):
|
||||
if sys.maxsize > 2**32:
|
||||
LIBSOFTHSM2_SO = BasePathNamespace.LIBSOFTHSM2_SO_64
|
||||
PAM_KRB5_SO = BasePathNamespace.PAM_KRB5_SO_64
|
||||
BIND_LDAP_SO = BasePathNamespace.BIND_LDAP_SO_64
|
||||
AUTHCONFIG = '/usr/sbin/authconfig'
|
||||
|
||||
|
||||
|
@ -769,6 +769,7 @@ class BindInstance(service.Service):
|
||||
RFC1912_ZONES=paths.NAMED_RFC1912_ZONES,
|
||||
NAMED_PID=paths.NAMED_PID,
|
||||
NAMED_VAR_DIR=paths.NAMED_VAR_DIR,
|
||||
BIND_LDAP_SO=paths.BIND_LDAP_SO,
|
||||
)
|
||||
|
||||
def __setup_dns_container(self):
|
||||
|
Loading…
Reference in New Issue
Block a user