IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
34d644ebdf
freeipa/ipalib
History
Alexander Bokovoy 34d644ebdf trust: do not fetch subdomains in case shared secret was used to set up the trust 
Until incoming trust is validated from AD side, we cannot run any operations
against AD using the trust. Also, Samba currently does not suport verifying
trust against the other party (returns WERR_NOT_SUPPORTED).

This needs to be added to the documentation:

   When using 'ipa trust-add ad.domain --trust-secret', one has to manually
   validate incoming trust using forest trust properties in AD Domains and
   Trusts tool.

   Once incoming trust is validated at AD side, use IPA command
   'ipa trust-fetch-domains ad.domain' to retrieve topology of the AD forest.
   From this point on the trust should be usable.

https://fedorahosted.org/freeipa/ticket/4246

Reviewed-By: Martin Kosek <mkosek@redhat.com>
2014-03-12 18:16:52 +01:00
..
plugins trust: do not fetch subdomains in case shared secret was used to set up the trust 2014-03-12 18:16:52 +01:00
__init__.py Remove the unused ipalib.frontend.Property class 2014-02-21 11:58:00 +01:00
aci.py Remove some unused imports 2013-03-01 16:59:42 +01:00
backend.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
base.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
capabilities.py Rewrite the Permission plugin 2013-12-13 15:08:52 +01:00
cli.py cli.print_attribute: Convert values to strings 2014-01-03 14:11:33 +01:00
config.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
constants.py Remove NULLS from constants.py 2014-02-25 16:05:19 +01:00
crud.py Add optional_create flag 2013-10-08 16:46:20 +02:00
errors.py Deprecate HBAC source hosts from CLI 2013-04-12 14:07:55 -04:00
frontend.py Remove the unused ipalib.frontend.Property class 2014-02-21 11:58:00 +01:00
krb_utils.py Pylint cleanup. 2013-01-29 15:39:49 +01:00
messages.py Add client capabilities, enable messages 2013-02-21 16:26:09 +01:00
output.py Typo fixes 2012-06-25 21:35:11 -04:00
parameters.py Remove NULLS from constants.py 2014-02-25 16:05:19 +01:00
pkcs10.py Fix assorted bugs found by pylint 2011-01-25 14:01:36 -05:00
plugable.py ipalib.plugable: Always set the parser in bootstrap() 2014-03-05 19:57:37 +01:00
request.py Remove deprecated i18n code from ipalib/request and all references to it. 2011-03-01 10:31:36 -05:00
rpc.py ipa tool: Print the name of the server we are connecting to with -v 2014-02-05 15:35:36 +01:00
session.py Compliant client side session cookie behavior 2012-12-10 12:45:09 -05:00
text.py Add ConcatenatedLazyText object 2013-11-21 10:34:25 +01:00
util.py DNS classless support for reverse domains 2014-02-11 17:21:11 +01:00
x509.py Skip cert issuer validation in service and host commands in CA-less install. 2013-07-09 14:22:57 -04:00