IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-27 09:21:59 -06:00
Code Issues Packages Projects Releases Wiki Activity
34d644ebdf
freeipa/ipalib/plugins
History
Alexander Bokovoy 34d644ebdf trust: do not fetch subdomains in case shared secret was used to set up the trust 
Until incoming trust is validated from AD side, we cannot run any operations
against AD using the trust. Also, Samba currently does not suport verifying
trust against the other party (returns WERR_NOT_SUPPORTED).

This needs to be added to the documentation:

   When using 'ipa trust-add ad.domain --trust-secret', one has to manually
   validate incoming trust using forest trust properties in AD Domains and
   Trusts tool.

   Once incoming trust is validated at AD side, use IPA command
   'ipa trust-fetch-domains ad.domain' to retrieve topology of the AD forest.
   From this point on the trust should be usable.

https://fedorahosted.org/freeipa/ticket/4246

Reviewed-By: Martin Kosek <mkosek@redhat.com>
2014-03-12 18:16:52 +01:00
..
__init__.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
aci.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
automember.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
automount.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
baseldap.py ipalib.plugins: Expose LDAPObjects' eligibility for permission --type in JSON metadata 2014-02-27 12:54:37 +01:00
batch.py Add the version option to all Commands 2013-02-21 16:26:09 +01:00
cert.py Certificate search max_serial_number problem fixed 2014-02-25 16:01:27 +01:00
config.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
delegation.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
dns.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
group.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
hbacrule.py Remove sourcehostcategory from the default HBAC rule. 2014-02-06 16:46:24 +01:00
hbacsvc.py ticket 1669 - improve i18n docstring extraction 2011-08-24 23:13:16 -04:00
hbacsvcgroup.py Improve help text for HBAC service groups 2013-04-18 17:29:07 -04:00
hbactest.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
host.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
hostgroup.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
idrange.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
internal.py UI for radius proxy 2014-03-12 17:29:28 +01:00
kerberos.py Use fully qualified CCACHE names 2013-02-01 08:13:50 +01:00
krbtpolicy.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
migration.py Migration does not add users to default group 2014-02-05 16:47:37 +01:00
misc.py ticket 1669 - improve i18n docstring extraction 2011-08-24 23:13:16 -04:00
netgroup.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
otptoken.py Fix token secret length RFC compliance 2014-03-05 10:09:16 +01:00
passwd.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
permission.py permission_add: Remove permission entry if adding the ACI fails 2014-03-12 12:17:08 +01:00
ping.py Allow API plugin registration via a decorator 2013-08-14 12:08:27 +02:00
pkinit.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
privilege.py Allow anonymous and all permissions 2014-01-07 09:56:41 +01:00
pwpolicy.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
radiusproxy.py Add RADIUS proxy support to ipalib CLI 2013-12-03 14:49:10 +01:00
realmdomains.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
role.py Only apply validation rules when adding and updating. 2012-02-29 18:00:45 -05:00
rpcclient.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
selfservice.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
selinuxusermap.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
service.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
sudocmd.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
sudocmdgroup.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
sudorule.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
trust.py trust: do not fetch subdomains in case shared secret was used to set up the trust 2014-03-12 18:16:52 +01:00
user.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
virtual.py Internationalization for public errors 2012-09-03 18:16:12 +02:00