Bug 1247817
Summary: | [DOC] Workaround for changing vault password | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Endi Sukma Dewata <edewata> |
Component: | doc-Linux_Domain_Identity_Management_Guide | Assignee: | Marc Muehlfeld <mmuehlfe> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Namita Soman <nsoman> |
Severity: | unspecified | Docs Contact: | |
Priority: | medium | ||
Version: | 7.2 | CC: | ftweedal |
Target Milestone: | rc | Keywords: | Documentation, EasyFix |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2019-04-16 07:32:41 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1249091 | ||
Bug Blocks: |
Description
Endi Sukma Dewata
2015-07-29 01:13:52 UTC
Comment#0 explains the procedures very nicely. To resolve this request, we could add the procedures to chapter "Storing Authentication Secrets with Vaults". Changing vault password is supported (for quite a while I think) via `ipa vault-add` command. % ipa help vault-mod Usage: ipa [global-options] vault-mod NAME [options] Modify a vault. Options: -h, --help show this help message and exit --desc=STR Vault description --type=['standard', 'symmetric', 'asymmetric'] Vault type --salt=BYTES Vault salt --public-key=BYTES Vault public key --setattr=STR Set an attribute to a name/value pair. Format is attr=value. For multi-valued attributes, the command replaces the values already present. --addattr=STR Add an attribute/value pair. Format is attr=value. The attribute must be part of the schema. --delattr=STR Delete an attribute/value pair. The option will be evaluated last, after all sets and adds. --rights Display the access rights of this entry (requires --all). See ipa man page for details. --service=PRINCIPAL Service name of the service vault --shared Shared vault --user=STR Username of the user vault --all Retrieve and print all attributes from the server. Affects command output. --raw Print entries as stored on the server. Only affects output format. --no-members Suppress processing of membership attributes. --change-password Change password --old-password=STR Old vault password --old-password-file=STR File containing the old vault password --new-password=STR New vault password --new-password-file=STR File containing the new vault password --private-key=BYTES Old vault private key --private-key-file=STR File containing the old vault private key --public-key-file=STR File containing the new vault public key The update is now available on the Customer Portal. |