mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-30 10:47:08 -06:00
db4c946f47
It was likely that this would fail being in an LDIF so let an update file add this potentially conflicting entry instead. https://fedorahosted.org/freeipa/ticket/2837
21 lines
700 B
Plaintext
21 lines
700 B
Plaintext
dn: cn=ipa-http-delegation,cn=s4u2proxy,cn=etc,$SUFFIX
|
|
changetype: modify
|
|
add: memberPrincipal
|
|
memberPrincipal: HTTP/$FQDN@$REALM
|
|
|
|
# ipa-cifs-delegation-targets needs to be an ipaAllowedTarget for HTTP
|
|
# delegation but we don't add it here as an LDIF because this entry may
|
|
# already exist from another replica, or previous install. If it is missing
|
|
# then it will be caught by the update file 61-trusts-s4u2proxy.update
|
|
|
|
dn: cn=ipa-ldap-delegation-targets,cn=s4u2proxy,cn=etc,$SUFFIX
|
|
changetype: modify
|
|
add: memberPrincipal
|
|
memberPrincipal: ldap/$FQDN@$REALM
|
|
|
|
dn: cn=ipa-cifs-delegation-targets,cn=s4u2proxy,cn=etc,$SUFFIX
|
|
changetype: modify
|
|
add: memberPrincipal
|
|
memberPrincipal: cifs/$FQDN@$REALM
|
|
|