Red Hat Bugzilla – Bug 437566
ipa-addservice will fail if the realm is included in the principal name
Last modified: 2015-01-04 18:31:16 EST
It is natural for people who know kerberos to include the realm name in the
principal name when requesting one from ipa-addservice.
Currently it will fail if the realm is included. What we should do instead is
drop the realm silently if it matches the IPA realm. It will make for a much
nicer user experience.
Created attachment 298290 [details]
allow realm to be included in add_service_principal() call
[root@jennyv3 ~]# ipa-addservice nfs/jennyv4.bos.redhat.com@BOS.REDHAT.COM
[root@jennyv3 ~]# ipa-findservice jennyv4.bos.redhat.com