Back to bug 782975
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jenny Severance | 2012-02-01 20:40:44 UTC | CC | jgalipea | |
| Dmitri Pal | 2012-03-06 17:04:37 UTC | Component | ipa | 389-ds-base |
| Assignee | rcritten | rmeggins | ||
| Nathan Kinder | 2012-03-14 21:28:53 UTC | Status | NEW | ASSIGNED |
| Rob Crittenden | 2012-03-14 21:40:25 UTC | CC | rcritten | |
| Nathan Kinder | 2012-06-18 22:31:11 UTC | CC | nkinder | |
| Nathan Kinder | 2012-08-13 16:21:41 UTC | Status | ASSIGNED | POST |
| Rich Megginson | 2012-08-31 19:01:15 UTC | Status | POST | MODIFIED |
| Fixed In Version | 389-ds-base-1.2.11.12-1.el6 | |||
| errata-xmlrpc | 2012-09-04 19:31:28 UTC | Status | MODIFIED | ON_QA |
| Jenny Severance | 2012-09-27 17:06:07 UTC | CC | mreynolds | |
| Doc Text | Cause: DS doesn't refresh it kerberos cache Consequence: If a new kerberos ticket was issused for a host that already authenticated against DS | |||
| Doc Text | it would be rejected by DS until it was restarted Fix: flush the kerberos cache on authentication failure Result: first attempt will fail, the cache will be flushed, and the second attempt will succeed. | |||
| Doc Text | Cause: DS doesn't refresh it kerberos cache Consequence: If a new kerberos ticket was issused for a host that already authenticated against DS | Cause: DS doesn't refresh its kerberos cache Consequence: If a new kerberos ticket was issused for a host that already authenticated against DS | ||
| Doc Text | it would be rejected by DS until it was restarted Fix: flush the kerberos cache on authentication failure Result: first attempt will fail, the cache will be flushed, and the second attempt will succeed. | it would be rejected by DS until it was restarted Fix: flush the kerberos cache on authentication failure Result: first attempt will fail, the cache will be flushed, and the second attempt will succeed. | ||
| Doc Text | Cause: DS doesn't refresh its kerberos cache Consequence: If a new kerberos ticket was issused for a host that already authenticated against DS | Feature: replication Reason: certain binds would cause only modifiersname/modifystimestamp to be updated, and this would lead to unneccessary replication traffic. Result: less replicatin traffic caused by binds. | ||
| Doc Text | it would be rejected by DS until it was restarted Fix: flush the kerberos cache on authentication failure Result: first attempt will fail, the cache will be flushed, and the second attempt will succeed. | |||
| Doc Type | Bug Fix | Enhancement | ||
| QA Contact | seceng-idm-qe-list | sramling | ||
| Sankar Ramalingam | 2013-01-29 18:17:54 UTC | Status | ON_QA | VERIFIED |
| errata-xmlrpc | 2013-02-21 03:15:03 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2013-02-21 08:16:58 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2013-02-21 03:16:58 UTC | |||
| Simon Pichugin | 2020-09-13 20:08:00 UTC | Link ID | Github 389ds/389-ds-base/issues/321 |
Back to bug 782975