Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1259020
Description of problem: ipa-adtrust-install doesn't allow NetBIOS name to have '-' ( dash ) character, only uppercase characters (DNS allows for '-' char) Please See the Microsoft url https://support.microsoft.com/en-us/kb/188997 Version-Release number of selected component (if applicable): # rpm -qif /sbin/ipa-adtrust-install Name : ipa-server-trust-ad Version : 4.1.0 Release : 18.el7_1.3 Architecture: x86_64 Install Date: Tue 18 Aug 2015 04:44:42 PM MDT Group : System Environment/Base Size : 382010 License : GPLv3+ Signature : RSA/SHA256, Mon 23 Mar 2015 12:30:54 PM MDT, Key ID 199e2f91fd431d51 Source RPM : ipa-4.1.0-18.el7_1.3.src.rpm Build Date : Thu 19 Mar 2015 12:44:00 PM MDT Build Host : x86-021.build.eng.bos.redhat.com Relocations : (not relocatable) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> Vendor : Red Hat, Inc. URL : http://www.freeipa.org/ Summary : Virtual package to install packages required for Active Directory trusts How reproducible: Steps to Reproduce: 1. create domain called example-test.com (or add to local hosts file) 2. ipa-server 3. Actual results: # ipa-adtrust-install --netbios-name=EXAMPLE-TEST.COM -a xxxxxx The log file for this installation can be found in /var/log/ipaserver-install.log ============================================================================== This program will setup components needed to establish trust to AD domains for the IPA Server. This includes: * Configure Samba * Add trust related objects to IPA LDAP server To accept the default shown in brackets, press the Enter key. Do you want to enable support for trusted domains in Schema Compatibility plugin? This will allow clients older than SSSD 1.9 and non-Linux clients to work with trusted users. Enable trusted domains support in slapi-nis? [no]: There was error to automatically re-kinit your admin user ticket. Proceeding with credentials that existed before Illegal NetBIOS name [EXAMPLE-TEST.COM]. Up to 15 characters and only uppercase ASCII letter and digits are allowed. Enter the NetBIOS name for the IPA domain. Only up to 15 uppercase ASCII letters and digits are allowed. Example: EXAMPLE. Expected results: Additional info: Please See the Microsoft url https://support.microsoft.com/en-us/kb/188997
I think this should be considered as part of 4.4. Allowing dash is a one line change.
we should just add dash
moving to 4.2.4 because patch is on the list and users ask for it
ipa-4-2:
ipa-4-3:
master: b41fbce
Metadata Update from @pvoborni: - Issue assigned to tbabej - Issue set to the milestone: FreeIPA 4.2.4
Login to comment on this ticket.