Steps to Reproduce in WebUI: Add existing Trust as follows: 1.Select Add in IPA Server Trusts 2.Enter AD Domain 3.Select Administrator Account 4.Enter existing Account and password
Actual results in Web UI: Trust Established and verified.
Step to Reproduce in CLI: Add existing trust again and again #ipa trust-add --type=ad mvarun.com --admin administrator --password Active directory domain administrator's password: #ipa trust-add --type=ad mvarun.com --admin administrator --password Active directory domain administrator's password: Actual results in CLI: --------------------------------------------------- Added Active Directory trust for realm "mvarun.com" --------------------------------------------------- Realm name: mvarun.com Domain NetBIOS name: MVARUN Domain Security Identifier: S-1-5-21-3517319380-3484331254-4086128528 Trust direction: Two-way trust Trust type: Active Directory domain Trust status: Established and verified --------------------------------------------------- Added Active Directory trust for realm "mvarun.com" --------------------------------------------------- Realm name: mvarun.com Domain NetBIOS name: MVARUN Domain Security Identifier: S-1-5-21-3517319380-3484331254-4086128528 Trust direction: Two-way trust Trust type: Active Directory domain Trust status: Established and verified Expected results in WebUI and CLI:
trust-add for existing trust should return error "trust already exists" instead of modifying it.
This is invalid. As discussed in the thread the expectation is wrong. The command updates the same trust with new credentials. The man page has been already updated to set the correct expectations.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=869741
Changes to help for trust-add is not available on rhel
Patch is on the list, needs one small modification to be ACKed.
Fixed.
master: 53a9421
ipa-3-0: 881fc3a
Metadata Update from @mvarun: - Issue assigned to abbra - Issue set to the milestone: FreeIPA 3.0.1 (bug fixing)
Login to comment on this ticket.