Bug 1031778
Summary: | The engine-manage-domains tool ignores the Kerberos servers from DNS when using -ldapServers | ||
---|---|---|---|
Product: | [Retired] oVirt | Reporter: | Juan Hernández <juan.hernandez> |
Component: | ovirt-engine-core | Assignee: | Martin Perina <mperina> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | bugs <bugs> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 3.3 | CC: | aberezin, acathrow, bazulay, emesika, iheim, sbonazzo, s.kieske, yeylon |
Target Milestone: | --- | ||
Target Release: | 3.4.1 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | infra | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-05-08 13:36:39 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Juan Hernández
2013-11-18 18:07:00 UTC
I posted a patch which adds "--resolve-kdc" argument which forces KDC servers to be resolved. With this patch engine-manage-domains has this behavior: 1) Add domain without --ldap-servers and without --resolve-kdc - LDAP servers are resolved from DNS and same servers are used as KDC servers in krb5.conf 2) Add domain with --ldap-servers and without --resolve-kdc - LDAP servers are set by user and same servers are used as KDC servers krb5.conf 3) Add domain without --ldap-servers and with --resolve-kdc - LDAP servers are resolved from DNS and separately KDC servers are resolved from DNS (LDAP server don't have to be same as KDC servers) 4) Add domain with --ldap-servers and with --resolve-kdc - LDAP servers are set by user and separately KDC servers are resolved from DNS (LDAP server don't have to be same as KDC servers) The same is used when editing a domain. Arthur, do you agree with this approach? This is an automated message. Re-targeting all non-blocker bugs still open on 3.4.0 to 3.4.1. Too much automation, merged only to master. This is an automated message oVirt 3.4.1 has been released: * should fix your issue * should be available at your local mirror within two days. If problems still persist, please make note of it in this bug report. |