dfefa6d DNSSEC: ipa-ods-exporter: add ldap-cleanup command

1 file Authored by pspacek 8 years ago, Committed by mbasti 8 years ago,
    DNSSEC: ipa-ods-exporter: add ldap-cleanup command
    
    Command "ldap-cleanup <zone name>" will remove all key metadata from
    LDAP. This can be used manually in sequence like:
    ldap-cleanup <zone name>
    update <zone name>
    to delete all key metadata from LDAP and re-export them from OpenDNSSEC.
    
    ldap-cleanup command should be called when disabling DNSSEC on a DNS
    zone to remove stale key metadata from LDAP.
    
    https://fedorahosted.org/freeipa/ticket/5348
    
    Reviewed-By: Martin Basti <mbasti@redhat.com>
    Reviewed-By: Martin Basti <mbasti@redhat.com>
    
        
file modified
+48 -12