Bug 750820

Summary: Instructions for configuring Sesame authentication are wrong and/or missing
Product: Red Hat Enterprise MRG Reporter: Trevor McKay <tmckay>
Component: Management_Console_Installation_GuideAssignee: Alison Young <alyoung>
Status: CLOSED CURRENTRELEASE QA Contact: Leonid Zhaldybin <lzhaldyb>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 2.0CC: esammons, lbrindle, lzhaldyb, matt
Target Milestone: 2.1   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-01-26 19:26:58 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
BZ750820 content none

Description Trevor McKay 2011-11-02 13:04:33 UTC 
Description of problem:

The MCIG indicates that Sesame authenticates using the ANONYMOUS mechanism by default.  This is actually not true currently (see BZ750315), and may be repaired.

If it is repaired, the guide needs an additional instruction related to turning on password authentication.  If it is not repaired, the guide needs language indicating that password authentication is on by default and how to configure it correctly.

In either case, we need a change.  Content will vary pending the outcome of BZ750315.
Comment 1 Trevor McKay 2011-11-04 19:17:12 UTC 
Created attachment 531833 [details]
BZ750820 content

Setting the uid and pwd parameters are not enough, the "mech" parameter must also be set in order to turn off ANONYMOUS and turn on PLAIN (or another mechanism).  Tried to rework the last paragraph to make this informative and concise.
Comment 2 Trevor McKay 2011-11-04 19:21:40 UTC 
Note, change tracking on.  This is section 3.2.2 by the way in the "stage" version.

(In reply to comment #1)
> Created attachment 531833 [details]
> BZ750820 content
> 
> Setting the uid and pwd parameters are not enough, the "mech" parameter must
> also be set in order to turn off ANONYMOUS and turn on PLAIN (or another
> mechanism).  Tried to rework the last paragraph to make this informative and
> concise.
Comment 3 Trevor McKay 2011-11-04 19:25:17 UTC 
Arg, last comment.

If it's not too much trouble, the title of 3.2.2 should probably change to parallel the title of the corresponding cumin config section 3.1.2

"Setting the Broker Address and Authentication"
Comment 6 Leonid Zhaldybin 2011-11-15 07:19:36 UTC 
The issue was fixed in the upcoming version 2.1.

-> VERIFIED
Comment 7 Lana Brindley 2012-01-26 19:26:58 UTC 
This book is now available on redhat.com/docs. Please raise a new bug if you spot any issues.

Thanks,
LKB