>From 25c6ff3d7eb2c8f9aa931b22b151cdee8a42afe3 Mon Sep 17 00:00:00 2001 From: Rich Megginson <rmeggins@xxxxxxxxxx> Date: Mon, 21 Sep 2009 15:09:54 -0600 Subject: [PATCH] Running setup-ds-admin.pl -u on replica with ldaps chokes on CA cert https://bugzilla.redhat.com/show_bug.cgi?id=501846 Resolves: bug 501846 Bug Description: Running setup-ds-admin.pl -u on replica with ldaps chokes on CA cert Reviewed by: ??? Fix Description: If the config directory LDAP url begins with ldaps, set the certdb to the existing cert directory. NOTE that this assumes you have a valid CA cert in your cert db already, and does not allow you to change it during setup. Platforms tested: Fedora 11 x86_64 Flag Day: no Doc impact: no --- admserv/newinst/src/setup-ds-admin.pl.in | 6 ++++++ 1 files changed, 6 insertions(+), 0 deletions(-) diff --git a/admserv/newinst/src/setup-ds-admin.pl.in b/admserv/newinst/src/setup-ds-admin.pl.in index 2d36e35..f49cacd 100644 --- a/admserv/newinst/src/setup-ds-admin.pl.in +++ b/admserv/newinst/src/setup-ds-admin.pl.in @@ -63,6 +63,12 @@ if ($admConf && %{$admConf}) { $setup->{inf}->{admin}->{SysUser} = $admConf->{sysuser}; } + if ($setup->{inf}->{General}->{ConfigDirectoryLdapURL} =~ /^ldaps/) { + unless (defined($setup->{inf}->{General}->{certdb})) { + $setup->{inf}->{General}->{certdb} = AdminUtil::getCertDir("$setup->{configdir}/admin-serv"); + } + } + # read additional config from config DS my $pset = AdminUtil::getPset($admConf); if ($pset && %{$pset}) { -- 1.5.5.6
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
-- 389-devel mailing list 389-devel@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-devel
