Red Hat Bugzilla – Bug 962958
IPA server replication fails, OTP support
Last modified: 2014-03-16 23:33:41 EDT
Description of problem:
Two Factor authentication is a F-19 feature, http://fedoraproject.org/wiki/Features/FreeIPA_Two_Factor_Authentication. The patches were just approved upstream this morning and we would like to get this feature into the beta. The Test Day for this is scheduled for June 6. This code is needs to be manually enabled by a user so will not affect the stability of IPA in general.
Additionally, DIR is the default ccache format in F-19. This change was added relatively late and we didn't catch that it breaks replication between IPA masters until today.
This will cause upgrade problems for anyone upgrading from F-18, or trying a new install on F-19 and creating a replica with any other server.
Version-Release number of selected component (if applicable):
fixed in ipa-3.2.0-2.fc19
Is there a reason fixing this on the images is better than just having the fix come in through updates-testing? Is this something that can be configured during installation, on a live image, or in initial-setup? Thanks.
Adam, how does shipping the update after install affect the F19 Feature?
As we're only talking about Beta here, it really doesn't. We unfreeze between Beta and Final, so if we don't take this as an FE, it'll still go into stable after Beta is released and be part of the Final frozen tree.
Ok, then it sounds like our build will effectively hit as a 0-day so I think we're all good.
OK, I've removed the FE proposal then. Thanks!