430016 – replication should use ssl

Bug 430016 - replication should use ssl

Summary: replication should use ssl

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	freeIPA
Classification:	Retired
Component:	ipa-server
Sub Component:
Version:	1.0
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Rob Crittenden
QA Contact:	Chandrasekar Kannan
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	freeipa10 429034
TreeView+	depends on / blocked

Reported:	2008-01-24 06:52 UTC by Chandrasekar Kannan
Modified:	2012-03-27 07:19 UTC (History)
CC List:	5 users (show)
Fixed In Version:	freeipa-2.0.0-1.fc15
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Chandrasekar Kannan 2008-01-24 06:52:22 UTC

Ticket #116 (new defect)

Opened 2 months ago
replication should use ssl
Reported by: 	kmacmill 	Assigned to: 	kmacmill
Priority: 	major 	Milestone: 	release-1
Component: 	documentation 	Version: 	
Keywords:

Comment 3 Rob Crittenden 2008-01-31 20:49:08 UTC

It looks like Karl added SSL to replication. The CA is copied to the replica and
we setup the agreement with:

nsds5replicatransportinfo: SSL

I think this is ready for testing.

Comment 4 Yi Zhang 2008-04-04 23:05:17 UTC

qa verified. bug closed

build: 4-4-08 daily build

ldap access log msg as below: 

[04/Apr/2008:15:44:42 -0700] conn=8 fd=69 slot=69 SSL connection from
172.16.142.140 to 172.16.142.161
[04/Apr/2008:15:44:42 -0700] conn=8 SSL 256-bit AES
[04/Apr/2008:15:44:42 -0700] conn=8 op=0 BIND dn="cn=replication
manager,cn=config" method=128 version=3
[04/Apr/2008:15:44:42 -0700] conn=8 op=0 RESULT err=0 tag=97 nentries=0 etime=0
dn="cn=replication manager,cn=config"
[04/Apr/2008:15:44:42 -0700] conn=8 op=1 SRCH base="" scope=0
filter="(objectClass=*)" attrs="supportedControl supportedExtension"

Note You need to log in before you can comment on or make changes to this bug.