Red Hat Bugzilla – Bug 603041
Remove unnecessary option krb5_changepw_principal
Last modified: 2015-01-04 18:42:50 EST
Description of problem:
The Kerberos provider contains an option krb5_changepw_principal. Probably no password-changing services that use the kpasswd protocol and relatives use a principal name other than "kadmin/changepw@REALM".
For 1.2 we should just remove the option from the configAPI and manpages and remove it altogether from a later version.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. man sssd-krb5
2. grep krb5_changepw_principal /etc/sssd/sssd.api.d/sssd-ipa.conf /etc/sssd/sssd.api.d/sssd-krb5.conf
krb5_changepw_principal is in both manpage and config API
The upstream bug is https://fedorahosted.org/sssd/ticket/531
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux major release. Product Management has requested further
review of this request by Red Hat Engineering, for potential inclusion in a Red
Hat Enterprise Linux Major release. This request is not yet committed for
"krb5_changepw_principal" no more exists in manpage and config API.
Verified in sssd-1.2.1-20.el6.x86_64.
Red Hat Enterprise Linux 6.0 is now available and should resolve
the problem described in this bug report. This report is therefore being closed
with a resolution of CURRENTRELEASE. You may reopen this bug report if the
solution does not work for you.