freeipa

Clone
Source Code
GIT

#5286 ipa-server-adtrust-install doesn't allow NetBIOS-name=EXAMPLE-TEST.COM (dash character)
Closed: Fixed None Opened 8 years ago by pvoborni.

Closed: Fixed
Reopen Issue

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1259020

Description of problem:  ipa-adtrust-install  doesn't allow NetBIOS name to
have '-' ( dash ) character, only uppercase characters (DNS allows for '-'
char)
  Please See the Microsoft url

https://support.microsoft.com/en-us/kb/188997

Version-Release number of selected component (if applicable):

# rpm -qif /sbin/ipa-adtrust-install
Name        : ipa-server-trust-ad
Version     : 4.1.0
Release     : 18.el7_1.3
Architecture: x86_64
Install Date: Tue 18 Aug 2015 04:44:42 PM MDT
Group       : System Environment/Base
Size        : 382010
License     : GPLv3+
Signature   : RSA/SHA256, Mon 23 Mar 2015 12:30:54 PM MDT, Key ID
199e2f91fd431d51
Source RPM  : ipa-4.1.0-18.el7_1.3.src.rpm
Build Date  : Thu 19 Mar 2015 12:44:00 PM MDT
Build Host  : x86-021.build.eng.bos.redhat.com
Relocations : (not relocatable)
Packager    : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
Vendor      : Red Hat, Inc.
URL         : http://www.freeipa.org/
Summary     : Virtual package to install packages required for Active Directory
trusts



How reproducible:


Steps to Reproduce:
1. create domain called example-test.com (or add to local hosts file)
2. ipa-server
3.

Actual results:
# ipa-adtrust-install --netbios-name=EXAMPLE-TEST.COM -a xxxxxx

The log file for this installation can be found in
/var/log/ipaserver-install.log
==============================================================================
This program will setup components needed to establish trust to AD domains for
the IPA Server.

This includes:
  * Configure Samba
  * Add trust related objects to IPA LDAP server

To accept the default shown in brackets, press the Enter key.

Do you want to enable support for trusted domains in Schema Compatibility
plugin?
This will allow clients older than SSSD 1.9 and non-Linux clients to work with
trusted users.

Enable trusted domains support in slapi-nis? [no]:

There was error to automatically re-kinit your admin user ticket.
Proceeding with credentials that existed before

Illegal NetBIOS name [EXAMPLE-TEST.COM].

Up to 15 characters and only uppercase ASCII letter and digits are allowed.
Enter the NetBIOS name for the IPA domain.
Only up to 15 uppercase ASCII letters and digits are allowed.
Example: EXAMPLE.



Expected results:


Additional info:
  Please See the Microsoft url

https://support.microsoft.com/en-us/kb/188997

I think this should be considered as part of 4.4. Allowing dash is a one line change.

we should just add dash

moving to 4.2.4 because patch is on the list and users ask for it

ipa-4-2:

  • 6578384 ipa-adtrust-install: Allow dash in the NETBIOS name

ipa-4-3:

  • 1496fb7 ipa-adtrust-install: Allow dash in the NETBIOS name

master: b41fbce

Metadata Update from @pvoborni:
- Issue assigned to tbabej
- Issue set to the milestone: FreeIPA 4.2.4
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
normal
None
None
None
None
defect
None
None
Trusts
None
1
easyfix
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=1259020
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.