Issue #4621: Upgrade from CA-less to CA-ful is not propagated to hosts in the domain - freeipa

freeipa

#4621 Upgrade from CA-less to CA-ful is not propagated to hosts in the domain

Closed: Fixed None Opened 9 years ago by jcholast.

When an IPA server is upgraded from CA-less to CA-ful, only that single server will know about the change, other servers and clients will still run in CA-less mode. This is because the installer only updates local configuration. Store the configuration in LDAP instead.

mkosek commented 9 years ago

master:

cbb4caa Do not create ipa-pki-proxy.conf if CA is not configured in ipa-upgradeconfig
6227ebb Do not fix trust flags in the DS NSS DB in ipa-upgradeconfig
608851d Check LDAP instead of local configuration to see if IPA CA is enabled

ipa-4-1:

63557c2 Do not create ipa-pki-proxy.conf if CA is not configured in ipa-upgradeconfig
277850e Do not fix trust flags in the DS NSS DB in ipa-upgradeconfig
5303e63 Check LDAP instead of local configuration to see if IPA CA is enabled

Metadata Update from @jcholast:
- Issue assigned to jcholast
- Issue set to the milestone: FreeIPA 4.1

7 years ago

Metadata

Assignee

jcholast

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.1

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

dkupka

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#4621 Upgrade from CA-less to CA-ful is not propagated to hosts in the domain Closed: Fixed None Opened 9 years ago by jcholast.

Metadata

#4621 Upgrade from CA-less to CA-ful is not propagated to hosts in the domain

Closed: Fixed None Opened 9 years ago by jcholast.