Back to bug 1311470
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Petr Vobornik | 2016-02-24 11:14:20 UTC | Status | NEW | POST |
| Jan Cholasta | 2016-02-24 12:23:01 UTC | Status | POST | MODIFIED |
| Fixed In Version | ipa-4.2.0-15.el7_2.9 | |||
| errata-xmlrpc | 2016-02-24 12:25:40 UTC | Status | MODIFIED | ON_QA |
| Petr Vobornik | 2016-03-01 16:52:07 UTC | Status | ON_QA | ASSIGNED |
| Petr Vobornik | 2016-03-02 09:45:18 UTC | Status | ASSIGNED | POST |
| Jan Cholasta | 2016-03-02 14:57:04 UTC | Status | POST | MODIFIED |
| CC | jcholast | |||
| Fixed In Version | ipa-4.2.0-15.el7_2.9 | ipa-4.2.0-15.el7_2.10 | ||
| errata-xmlrpc | 2016-03-02 14:59:09 UTC | Status | MODIFIED | ON_QA |
| Varun Mylaraiah | 2016-03-11 15:05:36 UTC | Status | ON_QA | VERIFIED |
| CC | mvarun | |||
| Petr Vobornik | 2016-03-15 15:08:53 UTC | Status | VERIFIED | ASSIGNED |
| Martin Bašti | 2016-03-16 12:54:16 UTC | Status | ASSIGNED | MODIFIED |
| Martin Bašti | 2016-03-16 16:33:24 UTC | Status | MODIFIED | POST |
| Jan Cholasta | 2016-03-17 06:35:12 UTC | Doc Text | Cause: When upgrading from IPA version prior to 4.2 or installing 4.2 version from scratch, new IPA sidgen and exdom plugins' configuration contained improper value of basedn (literally "$SUFFIX") instead of basedn of the IPA LDAP tree. Consequence: Security Identifiers (SIDs) for IPA users and objects were not generated properly due to misconfigured sidgen plugin. As result, all AD trusts created on affected version of IPA did not work while advertising that the trust was established correctly. Fix: Configuration of the sidgen and extdom plugins have been fixed as part of the server upgrade to this version. Trusts to AD forests must be re-created manually (by 'ipa trust-add' command). User warnings have been added to inform user that a trust to AD must be recreated. Result: After recreating the broken AD trusts, the AD trusts should work as expected. |
|
| Jan Cholasta | 2016-03-17 09:12:08 UTC | Status | POST | MODIFIED |
| Fixed In Version | ipa-4.2.0-15.el7_2.10 | ipa-4.2.0-15.el7_2.11 | ||
| errata-xmlrpc | 2016-03-17 09:12:43 UTC | Status | MODIFIED | ON_QA |
| Varun Mylaraiah | 2016-03-17 13:03:56 UTC | Status | ON_QA | VERIFIED |
| John Skeoch | 2016-05-05 04:37:09 UTC | CC | tbabej | mkosek |
| Aneta Šteflová Petrová | 2016-05-06 06:32:21 UTC | Doc Text | Cause: When upgrading from IPA version prior to 4.2 or installing 4.2 version from scratch, new IPA sidgen and exdom plugins' configuration contained improper value of basedn (literally "$SUFFIX") instead of basedn of the IPA LDAP tree. Consequence: Security Identifiers (SIDs) for IPA users and objects were not generated properly due to misconfigured sidgen plugin. As result, all AD trusts created on affected version of IPA did not work while advertising that the trust was established correctly. Fix: Configuration of the sidgen and extdom plugins have been fixed as part of the server upgrade to this version. Trusts to AD forests must be re-created manually (by 'ipa trust-add' command). User warnings have been added to inform user that a trust to AD must be recreated. Result: After recreating the broken AD trusts, the AD trusts should work as expected. | When upgrading an IdM server to version 4.2 or installing the 4.2 version, AD trusts created on the server did not work, even though the server reported the trust status as established and verified. This update fixes the configuration of the sidgen and extdom plug-ins, thus eliminating the problem. If you experienced this problem, recreate all trusts using the ipa trust-add utility. |
| errata-xmlrpc | 2016-05-12 00:55:35 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2016-05-12 09:58:38 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-05-12 05:58:38 UTC |
Back to bug 1311470