| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
|
|
Move options up with other keytab backend options except for the
bucket for keytabs, which does belong in the section on retrieving
existing keytabs.
|
|
Fix one duplicate code line that produced a warning.
|
|
Also add stopwords.
|
|
|
|
|
|
It turns out that the length limitations apply to all keytabs, not
just service keytabs. This change creates unique ids for hostnames
that exceed the AD length limit.
|
|
The account name for a service keytab cannot exceed 20 characters.
The routine that was generating a unique id incorrectly attempted to
perform an LDAP query. This change fixes that problem.
|
|
The account name for a service keytab cannot exceed 20 characters.
The routine that was generating a unique id incorrectly attempted to
perform an LDAP query. This change fixes that problem.
|
|
* Make sure userPrincipalName is created for all keytabs and use it to
search for entries in AD.
* Allow the creation of any service principal. This requires making
sure that the cn used to create AD entries for service accounts not
be any longer than 20 characters.
|
|
Correct a variable reference that was causing AD keytab creation to
fail. Update the debugging for shell command execution that makes
debugging more rebust and highlights problems.
|
|
* This ad-keytab is useful in the initial setup of AD as a keytab
store for wallet.
* Change configuration variables to correctly reflect that some values
are relative distinguished names.
* Add a configuration variable for the base distinguished name for
ActiveDirectory.
|
|
|
|
with multiple enctypes specified, only the last one will actually take effect. If you wish to provide support for more then one, you need to add the values (0x04 + 0x08 + 0x10 = 0x1C).
replacing the 3 lines with one line to enable all three. Note that the keytabs generated will have 3 line for each principal (one for each enctypes).
See msktutil man page for further details on enctypes.
|
|
|
|
|
|
|
|
|
|
|
|
Use @PERL@ as the substitution variable instead of WALLET_PERL_PATH
to match normal Automake conventions. Write the scripts into the
build path, not the source path, to work properly with out-of-tree
builds. Clean up the distribution rules. Use separate Makefile rules
for each script so that make has proper dependencies.
Also fix the Perl paths in (some of) the test scripts, although there
are others for which this still isn't going to work.
|
|
Properly quote all the macro arguments, use AS_IF, and move the
code to the appropriate sequence in configure.ac.
|
|
|
|
|
|
The server scripts now have a unique string where the Perl path should
be, and the Makefile uses sed to insert the correct path at build time
(using the path determined by configure).
The server scripts now have .in extensions, and setting the executable
flag is handled by the Makefile.
We also have to change autogen, because it looks for the scripts in
the server directory when it generates the man pages.
|
|
Use configure to determine the path to Perl, and error out if Perl is
not found or is too old. This also means users can set a path to a
custom or weirdly-named Perl binary.
|
|
Remove stray references to strlcpy and strlcat that broke builds on
platforms where those functions are part of libc. Thanks to Karl
Kornel for the report.
|
|
|
|
|
|
|
|
|
|
* Add explicit build dependency on libmodule-build-perl, since it is no
no longer provided by the perl package.
|
|
|
|
* Remove explicit setting of xz as the Debian source package compression
type. This is now the default.
|
|
I'll use a patch queue if I have any differences from upstream.
|
|
New wallet object types, ACLs, and kadmin backends require new
modules. Flesh out the build dependencies and suggests, and then
clean up all the control files with wrap-and-sort -ast.
|
|
|
|
|
|
Upstream version 1.3
|
|
|
|
|
|
|
|
This fixes locating the NEWS file when building out of tree.
|
|
|
|
Assume that everything we might test in an out-of-tree build is
also present in the source tree and can be checked there.
|
|
|
|
|
|
|
|
|
