Bug 707028 - RFE: allow configuration to be overridden on the command-line
Summary: RFE: allow configuration to be overridden on the command-line
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: 389-ds-base
Version: 7.3
Hardware: Unspecified
OS: Unspecified
low
low
Target Milestone: rc
: 7.3
Assignee: mreynolds
QA Contact: RHDS QE
URL:
Whiteboard:
: 766327 (view as bug list)
Depends On:
Blocks: 690319 766327
TreeView+ depends on / blocked
 
Reported: 2011-05-23 19:31 UTC by Rob Crittenden
Modified: 2020-09-13 19:47 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
: 766327 (view as bug list)
Environment:
Last Closed: 2018-10-18 17:50:25 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


Links
System ID Private Priority Status Summary Last Updated
Github 389ds 389-ds-base issues 41 0 None None None 2020-09-13 19:47:13 UTC

Description Rob Crittenden 2011-05-23 19:31:43 UTC 
Description of problem:

When upgrading IPA we shut down dirsrv, reconfigure it to only listen on ldapi, restart it, apply our updates, then reverse it.

It would be safer if we could pass in the configuration changes on the command-line rather than changing dse.ldif directly.

It might look something like:

-C cn=config:nsslapd-port=0 -C cn=config:nsslapd-ldapisocket=/var/run/ipa-update.socket ...
Comment 3 Martin Kosek 2012-01-04 13:22:56 UTC 
Upstream ticket:
https://fedorahosted.org/389/ticket/41
Comment 5 mreynolds 2015-12-22 20:43:36 UTC 
*** Bug 766327 has been marked as a duplicate of this bug. ***
Comment 6 Noriko Hosoi 2015-12-23 18:14:16 UTC 
DS 41 has this comment.  Can we at least assess the possibility?
Replying to [comment:10 nhosoi]:
> Comment by Ludwig: 
> but not this specific suggestion, but could we allow enabling/disabling ports without restart. Is this something that could be done in the context of nunc-stans?
Comment 9 mreynolds 2018-10-18 14:58:45 UTC 
Is this bug needed/valid anymore?  You can set ldapi values using ldapmodify
Comment 10 Rob Crittenden 2018-10-18 16:02:22 UTC 
It can be closed. I'll open a ticket against freeipa to make these changes over LDAP instead of directly tweaking the files.

I assume a restart needed if the listeners are updated?
Comment 11 mreynolds 2018-10-18 16:05:50 UTC 
(In reply to Rob Crittenden from comment #10)
> It can be closed. I'll open a ticket against freeipa to make these changes
> over LDAP instead of directly tweaking the files.
> 
> I assume a restart needed if the listeners are updated?

Yeah a restart is still needed.  But Ludwig just pointed out that this RFE might have been related to passing config options directly to ns-slapd?  I guess openldap does something like this.  If that's the case, and it does provide value we could move this RFE to a later RHEL release instead of closing it.
Comment 12 Rob Crittenden 2018-10-18 17:37:25 UTC 
Passing as arguments to ns-slapd was the original idea but making the changes over ldapi I think is sufficient for our needs, and certainly better than directly tweaking dse.ldif. You may close this.
Comment 13 mreynolds 2018-10-18 17:50:25 UTC 
(In reply to Rob Crittenden from comment #12)
> Passing as arguments to ns-slapd was the original idea but making the
> changes over ldapi I think is sufficient for our needs, and certainly better
> than directly tweaking dse.ldif. You may close this.

Will do, thanks Rob!
Note You need to log in before you can comment on or make changes to this bug.