Learn more about these different git repos.
Other Git URLs
Nalin said:
The set_preauth_list function is something that SSSD might want to do to avoid accidentally attempting PKINIT -- sometimes people configure krb5.conf so that PKINIT will always be attempted, and I don't think SSSD's ready for that just yet, and I'm pretty sure this is the API for that.
Fields changed
milestone: NEEDS_TRIAGE => SSSD 1.8.0 priority: major => minor
type: defect => enhancement
blockedby: => blocking: => milestone: SSSD 1.8.0 => SSSD 1.9.0
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=740848
milestone: SSSD 1.9.0 => SSSD Kerberos improvements
rhbz: => 0
The intent is to support PKINIT properly so it makes sense to have it configurable.
feature_milestone: => proposed_priority: => Core
Replying to [comment:7 dpal]:
Talked to Nalin. We were wrong. Nalin will add a comment and close the ticket.
proposed_priority: Core => Undefined
Yes, this bypasses the preauth mechanism selection logic, and if we're going to properly handle prompter and/or responder callbacks, we don't want to be dealing with this. Marking won't-fix.
resolution: => wontfix status: new => closed
Metadata Update from @jhrozek: - Issue set to the milestone: SSSD Kerberos Improvements Feature
SSSD is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in SSSD's github repository.
This issue has been cloned to Github and is available here: - https://github.com/SSSD/sssd/issues/2039
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Login to comment on this ticket.