This bug is created as a clone of upstream ticket:
This is just a tracker to support the one-way trusts in SSSD server mode. More info TBD as we design the feature.
Marking as MODIFIED since the functionality is available. Bugfixes can be delivered atop the current packages.
RFE tested with below scenarios::
TC_01 : Add trust without --two-way option.
TC_02 : Obtain ticket to AD by re-establish trust (Negative Test)
TC_03 : Re-establish trust with --two-way=True option
TC_04 : Obtain ticket to AD by re-establish trust (Positive Test)
TC_05 : Add trust from IPA server with root AD having a child domain_Bz#1250190
TC_06 : Add one way trust_then delete_add two way trust_Bz#1250135
TC_07 : Add two way trust_then delete_add one way trust-add_Bz#1250135
TC_08 : Test with –trust-secret add one way trust from IPA server and add two way from AD server
TC_09 : Test with –trust-secret add one way trust from IPA server and add one way outgoing from AD server
TC_10 : Test with –trust-secret add two way trust from IPA server and add two way from AD server
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.