Alexander Bokovoy 0be9888499 adtrust: add default read_keys permission for TDO objects ... If trusted domain object (TDO) is lacking ipaAllowedToPerform;read_keys attribute values, it cannot be used by SSSD to retrieve TDO keys and the whole communication with Active Directory domain controllers will not be possible. This seems to affect trusts which were created before ipaAllowedToPerform;read_keys permission granting was introduced (FreeIPA 4.2). Add back the default setting for the permissions which grants access to trust agents and trust admins. Resolves: https://pagure.io/freeipa/issue/8067 Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com> Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>		2019-09-12 17:17:53 +03:00
..
advise	Add install/remove package helpers to advise	2018-12-11 13:46:52 +01:00
dnssec	Add ODS manager abstraction to ipaplatform	2019-04-24 14:08:20 +02:00
install	adtrust: add default read_keys permission for TDO objects	2019-09-12 17:17:53 +03:00
plugins	Modify webUI to adhere to new IPA server API	2019-09-10 12:33:21 +03:00
secrets	Fix CustodiaClient ccache handling	2019-06-18 10:36:24 +10:00
__init__.py	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
dcerpc_common.py	Py3: Replace six.text_type with str	2018-09-27 16:11:18 +02:00
dcerpc.py	Use new LDAPClient constructors	2019-02-05 08:39:13 -05:00
dns_data_management.py	Py3: Remove subclassing from object	2018-09-27 11:49:04 +02:00
Makefile.am	Build: Makefiles for Python packages	2016-11-09 13:08:32 +01:00
masters.py	Add hidden replica feature	2019-03-28 17:57:58 +01:00
p11helper.py	Add PKCS#11 module name to p11helper errors	2019-07-25 15:16:33 -04:00
rpcserver.py	Py3: Replace six.moves imports	2018-10-05 12:06:19 +02:00
servroles.py	Consider configured servers as valid	2019-04-29 16:51:40 +02:00
setup.cfg	Port all setup.py to setuptools	2016-10-20 18:43:37 +02:00
setup.py	Move Custodia secrets handler to scripts	2019-04-26 12:09:22 +02:00
topology.py	Py3: Remove subclassing from object	2018-09-27 11:49:04 +02:00