Description of problem: Need to clean up the definitions of the SEC_* params in the default db: 1) The params should have must_change = false 2) <subsys>.SEC_* should be removed from all features in the db Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
May also be able to remove claimtobe authentication methods since fs/ntlm is specified.
Also look at making Authentication REQUIRED instead of OPTIONAL.
Removed all SEC_* params from all features except the Master feature. Also edited SEC_DEFAULT_AUTHENTICATION_METHODS on the Master feature to include FS and NTLM methods. All SEC_* params are neither must_change nor needs_restart Fixed on master
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: C: The remote configuration default database had a number of unneeded security related parameters in several features C: The security parameters could be confusing on a configured node C: Cleaned up the security params in the default db R: Security parameter settings are much more clear
Tested with: condor-wallaby-base-db-1.14-1 Tested on: RHEL5 i386,x86_64 RHEL6 i686,x86_64 SEC_DEFAULT_AUTHENTICATION_METHODS on the Master feature includes also FS and NTLM methods. All SEC_* parameters have must_change and needs_restart set to false Only Master feature contains SEC_* parameters. >>> VERIFIED
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2011-1249.html