DNSSEC: DNS key synchronization daemon

Tickets: https://fedorahosted.org/freeipa/ticket/3801 https://fedorahosted.org/freeipa/ticket/4417 Design: https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/DNSSEC Reviewed-By: Jan Cholasta <jcholast@redhat.com> Reviewed-By: David Kupka <dkupka@redhat.com>
2025-02-25 18:55:28 -06:00 · 2014-10-16 15:43:29 +02:00
parent bcce86554f
commit eb54814741
8 changed files with 525 additions and 2 deletions
--- a/install/share/Makefile.am
+++ b/install/share/Makefile.am
@@ -33,6 +33,7 @@ app_DATA =				\
 	replica-acis.ldif		\
 	ds-nfiles.ldif			\
 	dns.ldif			\
+	dnssec.ldif			\
 	kerberos.ldif			\
 	indices.ldif			\
 	bind.named.conf.template	\
@@ -63,7 +64,7 @@ app_DATA =				\
 	managed-entries.ldif		\
 	user_private_groups.ldif	\
 	host_nis_groups.ldif		\
-	uuid-ipauniqueid.ldif		\
+	uuid.ldif		\
 	modrdn-krbprinc.ldif		\
 	entryusn.ldif			\
 	root-autobind.ldif		\
--- a/install/share/dnssec.ldif
+++ b/install/share/dnssec.ldif
@@ -0,0 +1,11 @@
+dn: cn=sec,cn=dns,$SUFFIX
+changetype: add
+objectClass: nsContainer
+objectClass: top
+cn: sec
+
+dn: cn=keys,cn=sec,cn=dns,$SUFFIX
+changetype: add
+objectClass: nsContainer
+objectClass: top
+cn: keys
--- a/install/share/uuid-ipauniqueid.ldif
+++ b/install/share/uuid-ipauniqueid.ldif
@@ -9,3 +9,15 @@ ipaUuidMagicRegen: autogenerate
 ipaUuidFilter: (|(objectclass=ipaObject)(objectclass=ipaAssociation))
 ipaUuidScope: $SUFFIX
 ipaUuidEnforce: TRUE
+
+# add plugin configuration for ipk11UniqueId
+dn: cn=IPK11 Unique IDs,cn=IPA UUID,cn=plugins,cn=config
+changetype: add
+objectclass: top
+objectclass: extensibleObject
+cn: IPK11 Unique IDs
+ipaUuidAttr: ipk11UniqueID
+ipaUuidMagicRegen: autogenerate
+ipaUuidFilter: (objectclass=ipk11Object)
+ipaUuidScope: $SUFFIX
+ipaUuidEnforce: FALSE
--- a/install/updates/20-uuid.update
+++ b/install/updates/20-uuid.update
@@ -0,0 +1,11 @@
+
+# add plugin configuration for ipk11UniqueId
+dn: cn=IPK11 Unique IDs,cn=IPA UUID,cn=plugins,cn=config
+default: objectclass: top
+default: objectclass: extensibleObject
+default: cn: IPK11 Unique IDs
+default: ipaUuidAttr: ipk11UniqueID
+default: ipaUuidMagicRegen: autogenerate
+default: ipaUuidFilter: (objectclass=ipk11Object)
+default: ipaUuidScope: $SUFFIX
+default: ipaUuidEnforce: FALSE
--- a/install/updates/Makefile.am
+++ b/install/updates/Makefile.am
@@ -19,6 +19,7 @@ app_DATA =				\
 	20-syncrepl.update		\
 	20-user_private_groups.update	\
 	20-winsync_index.update		\
+	20-uuid.update  \
 	21-replicas_container.update	\
 	21-ca_renewal_container.update	\
 	21-certstore_container.update	\