Bug 437564
| Summary: | ipa-getkeytab man page is out-of-date | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Retired] freeIPA | Reporter: | Rob Crittenden <rcritten> | ||||
| Component: | ipa-client | Assignee: | Simo Sorce <ssorce> | ||||
| Status: | CLOSED ERRATA | QA Contact: | Chandrasekar Kannan <ckannan> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | medium | ||||||
| Version: | 1.0 | CC: | benl | ||||
| Target Milestone: | --- | ||||||
| Target Release: | --- | ||||||
| Hardware: | All | ||||||
| OS: | Linux | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | freeipa-2.0.0-1.fc15 | Doc Type: | Bug Fix | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2012-03-27 07:14:47 UTC | Type: | --- | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 429034 | ||||||
| Attachments: |
|
||||||
I already have a patch in the pipe for this. Will set as MODIFIED when pushed. hm. I would like to see the list of encryption types atleast mentioned as an example or tell the user a way to get that info. re-opening... update the man page with a method of how to obtain the list of supported enc types Created attachment 301722 [details]
permitted enctypes
The option: "--permitted-enctypes" is not in man page, can this be added into
the man page?
[btw, the option is working. We just need the man page to be updated. My test as
below:
server64[05/22/24 11:10] ipa-getkeytab --permitted-enctypes
Supported encryption types:
AES-256 CTS mode with 96-bit SHA-1 HMAC
AES-128 CTS mode with 96-bit SHA-1 HMAC
Triple DES cbc mode with HMAC/sha1
ArcFour with HMAC/md5
DES cbc mode with CRC-32
DES cbc mode with RSA-MD5
DES cbc mode with RSA-MD4
======================================================
server64[05/22/24 11:11] man ipa-getkeytab
ipa-getkeytab(1) ipa-getkeytab(1)
NAME
ipa-getkeytab - Get a keytab for a kerberos principal
SYNOPSIS
ipa-getkeytab <-s ipaserver> <-p principal-name> <-k keytab-file> [-e
encryption-types] [-q]
Simo's reply regarding the enctypes list The list is dependent on the platfrom you run the tool on (we compile it only for linux atm anyway). The list is retrieve from the kerberos configuration and if no action is taken retiurns the default set of supported types by the currently installed kerberos libraries. Simo. but the bug sill valid at this point due to we still don't have the correct msg in man page for --permitted-nctypes option bug closed, as the "--permitted-enctypes" is under "-e" option QA Verified on May 22, 2008 (Yi) Build used: May 22, 2008 (x64) |
Description of problem: The utility itself reports the following usage: Usage: ipa-getkeytab [-s|--server Server Name] [-p|--principal Kerberos Service Principal Name] [-k|--keytab Keytab File Name] [-e|--enctypes Comma separated encription types list] The man page shows: ipa-getkeytab [-a] principal-name file-name And aren't arguments within a [] optional? -s, -p and -k are all required. Is this just a problem with popt?