Hide Forgot
Description of problem: ipa-managed-entries --list -p <badpassword> still requires DM password,instead of giving an error msg. Version-Release number of selected component (if applicable): ipa-server-3.3.3-6.el7.x86_64 389-ds-base-1.3.1.4-1.el7.x86_64 How reproducible: Always Steps to Reproduce: 1.ipa-managed-entries --list -p <badpassword> Actual results: [root@rhel7 managed-entry]# ipa-managed-entries --list -p badpassword Directory Manager password: Expected results: [root@rhel7 managed-entry]# ipa-managed-entries --list -p badpassword Invalid credentials Additional info:
Alternatively, DM password would not have to be required for root at all as he could authenticate via autobind... Related: https://fedorahosted.org/freeipa/ticket/2957
Upstream ticket: https://fedorahosted.org/freeipa/ticket/4089
Fixed upstream master: https://fedorahosted.org/freeipa/changeset/45dbd12d8886ca2025bcab5b10ec5e004af3d9ab
Verified. Version :: ipa-server-4.2.0-8.el7.x86_64 Results :: :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :: [ LOG ] :: ipa-managedentry-cli-003: invalid password should fail :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :: [ BEGIN ] :: Running 'ipa-managed-entries --list -p badpassword < /dev/null > /tmp/bz1045153.out 2>&1' :: [ PASS ] :: Command 'ipa-managed-entries --list -p badpassword < /dev/null > /tmp/bz1045153.out 2>&1' (Expected 1, got 1) :: [ PASS ] :: File '/tmp/bz1045153.out' should not contain 'Directory Manager password:' Invalid credentials :: [ PASS ] :: File '/tmp/bz1045153.out' should contain 'Invalid credentials'
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2015-2362.html