Jira (PUP-3127) LDAP - introduce LDAP-Certificat Directory

16 views
Skip to first unread message

Josh Cooper (JIRA)

unread,
Nov 13, 2014, 4:19:26 PM11/13/14
to puppe...@googlegroups.com
Josh Cooper updated an issue
 
Puppet / New Feature PUP-3127
LDAP - introduce LDAP-Certificat Directory
Change By: Josh Cooper
Component/s: Community
Add Comment Add Comment
 
This message was sent by Atlassian JIRA (v6.3.7#6337-sha1:2ed701e)
Atlassian logo

Eric Sorenson (JIRA)

unread,
Nov 21, 2014, 4:20:27 PM11/21/14
to puppe...@googlegroups.com
Eric Sorenson updated an issue
Change By: Eric Sorenson
Story Points: 2

Eric Sorenson (JIRA)

unread,
Nov 21, 2014, 4:22:28 PM11/21/14
to puppe...@googlegroups.com
Eric Sorenson commented on New Feature PUP-3127
 
Re: LDAP - introduce LDAP-Certificat Directory

Assigned a somewhat arbitrary 2 points to this, since there's code already in but it requires some Solaris validation.

Geoffrey Gardella could you please check out the PR linked above and see if the code and questions posed during PR triage make sense?

Geoffrey Gardella (JIRA)

unread,
Nov 23, 2014, 4:22:27 PM11/23/14
to puppe...@googlegroups.com

While /var/ldap is the default, it is configurable: https://docs.oracle.com/cd/E23824_01/html/821-1455/clientsetup-49.html#clientsetup-57 The certpath can be set using the ldapclient command. The path is stored in smf as cred/host_certpath. Setting either via ldapclient or svccfg works, and is refelected in the other.

  1. svccfg -s ldap/client:default
    svc:/network/ldap/client:default> setprop cred/host_certpath = astring: "/var/tmp/ldap"
  1. ldapclient list | grep CERTP
    NS_LDAP_HOST_CERTPATH= /var/tmp/ldap

Geoffrey Gardella (JIRA)

unread,
Dec 9, 2014, 11:04:27 AM12/9/14
to puppe...@googlegroups.com

I managed to get a Solaris 10 system for testing. This does not appear to be under smf control in Solaris 10, but the directory was the same (/var/ldap). I don't see any documentation saying this is tunable. I suggest we set it to the default for Solaris 10.

Michael Smith (JIRA)

unread,
Dec 17, 2014, 1:49:27 PM12/17/14
to puppe...@googlegroups.com
Michael Smith commented on New Feature PUP-3127

Geoffrey Gardella are you suggesting we set the general default for ldapcrtdir to /var/ldap, or that we create a hook that sets the default only on Solaris 10? It seems safe to make /var/ldap the general default, and have the implementation treat ldapcrtdir as false if the /var/ldap doesn't exist.

Kylo Ginsberg (JIRA)

unread,
Dec 17, 2014, 11:49:27 PM12/17/14
to puppe...@googlegroups.com
Kylo Ginsberg updated an issue
 
Change By: Kylo Ginsberg
Component/s: Server
Component/s: Types and Providers

Kylo Ginsberg (JIRA)

unread,
Dec 17, 2014, 11:53:27 PM12/17/14
to puppe...@googlegroups.com
Kylo Ginsberg updated an issue
Change By: Kylo Ginsberg
Component/s: Types and Providers
Component/s: Server

Kylo Ginsberg (JIRA)

unread,
Dec 19, 2014, 4:48:09 PM12/19/14
to puppe...@googlegroups.com
Kylo Ginsberg updated an issue
Change By: Kylo Ginsberg
Scrum Team: Release Engineering
This message was sent by Atlassian JIRA (v6.3.10#6340-sha1:7ea293a)
Atlassian logo

Scott Garman (JIRA)

unread,
Jan 28, 2015, 5:22:46 PM1/28/15
to puppe...@googlegroups.com
Scott Garman assigned an issue to Scott Garman
Change By: Scott Garman
Assignee: Scott Garman

Kylo Ginsberg (JIRA)

unread,
Feb 5, 2015, 4:21:44 PM2/5/15
to puppe...@googlegroups.com
Kylo Ginsberg updated an issue
Change By: Kylo Ginsberg
Fix Version/s: PUP 4.0.0
Fix Version/s: PUP 4.x

Kylo Ginsberg (JIRA)

unread,
Feb 5, 2015, 4:22:40 PM2/5/15
to puppe...@googlegroups.com
Kylo Ginsberg commented on New Feature PUP-3127
 
Re: LDAP - introduce LDAP-Certificat Directory

Marking this as for 4.x because we're pausing merges of non-critical, non-AIO PRs to puppet/master in the run up to puppet 4.0.

Scott Garman (JIRA)

unread,
Feb 19, 2015, 7:32:39 PM2/19/15
to puppe...@googlegroups.com
Scott Garman updated an issue
 
Change By: Scott Garman
Sprint: RE 2015-02-25
Story Points: 2 3

Kenn Hussey (JIRA)

unread,
Feb 25, 2015, 12:46:29 PM2/25/15
to puppe...@googlegroups.com
Kenn Hussey updated an issue
Change By: Kenn Hussey
Sprint: RE 2015-02-25 , RE 2015-03-11

Kenn Hussey (JIRA)

unread,
Feb 26, 2015, 10:54:49 AM2/26/15
to puppe...@googlegroups.com
Kenn Hussey updated an issue
Change By: Kenn Hussey
Scope Change Reason: Community pull request work
Scope Change Category: Adopted

Kenn Hussey (JIRA)

unread,
Mar 11, 2015, 12:42:52 PM3/11/15
to puppe...@googlegroups.com
Kenn Hussey updated an issue
Change By: Kenn Hussey
Sprint: RE 2015-02-25, RE 2015-03-11 , RE 2015-03-25

Melissa Stone (JIRA)

unread,
Mar 11, 2015, 1:41:33 PM3/11/15
to puppe...@googlegroups.com
Melissa Stone assigned an issue to Branan Riley
Change By: Melissa Stone
Assignee: Scott Garman Branan Riley

Kenn Hussey (JIRA)

unread,
Mar 25, 2015, 12:45:34 PM3/25/15
to puppe...@googlegroups.com
Kenn Hussey updated an issue
Change By: Kenn Hussey
Sprint: RE 2015-02-25, RE 2015-03-11, RE 2015-03-25 , RE 2015-04-08

Kenn Hussey (JIRA)

unread,
Mar 25, 2015, 1:06:14 PM3/25/15
to puppe...@googlegroups.com

Josh Cooper (JIRA)

unread,
Apr 6, 2017, 3:26:06 PM4/6/17
to puppe...@googlegroups.com
Josh Cooper updated an issue
Change By: Josh Cooper
Team: Agent
This message was sent by Atlassian JIRA (v6.4.14#64029-sha1:ae256fe)
Atlassian logo

Rob Browning (JIRA)

unread,
May 16, 2017, 5:50:04 PM5/16/17
to puppe...@googlegroups.com
Rob Browning updated an issue
Change By: Rob Browning
Labels: ldap ldapcert solaris  triaged

Josh Cooper (JIRA)

unread,
May 17, 2017, 6:54:04 PM5/17/17
to puppe...@googlegroups.com
Josh Cooper updated an issue
Change By: Josh Cooper
Fix Version/s: PUP 4.y
Fix Version/s: PUP 5.y

Moses Mendoza (JIRA)

unread,
May 18, 2017, 1:49:42 PM5/18/17
to puppe...@googlegroups.com
Moses Mendoza updated an issue
Change By: Moses Mendoza
Labels: ldap ldapcert solaris  triaged

freddy marcos (JIRA)

unread,
Jan 13, 2018, 6:24:04 AM1/13/18
to puppe...@googlegroups.com
freddy marcos assigned an issue to freddy marcos
Change By: freddy marcos
Assignee: Branan Riley freddy marcos
This message was sent by Atlassian JIRA (v7.0.2#70111-sha1:88534db)
Atlassian logo

Justin Stoller (JIRA)

unread,
Feb 7, 2018, 1:15:04 AM2/7/18
to puppe...@googlegroups.com
Justin Stoller updated an issue
Change By: Justin Stoller
Component/s: Server
This message was sent by Atlassian JIRA (v7.5.1#75006-sha1:7df2574)
Atlassian logo

Branan Riley (JIRA)

unread,
May 9, 2018, 3:41:04 PM5/9/18
to puppe...@googlegroups.com
Branan Riley updated an issue
Change By: Branan Riley
Labels: ldap ldapcert solaris triaged type_and_provider
This message was sent by Atlassian JIRA (v7.7.1#77002-sha1:e75ca93)
Atlassian logo

Branan Riley (JIRA)

unread,
May 9, 2018, 3:41:04 PM5/9/18
to puppe...@googlegroups.com

Branan Riley (JIRA)

unread,
May 9, 2018, 3:42:04 PM5/9/18
to puppe...@googlegroups.com
Branan Riley assigned an issue to Eric Sorenson
Change By: Branan Riley
Assignee: freddy marcos Eric Sorenson

Branan Riley (JIRA)

unread,
May 9, 2018, 3:42:05 PM5/9/18
to puppe...@googlegroups.com
Branan Riley assigned an issue to Unassigned
Change By: Branan Riley
Assignee: Eric Sorenson

Josh Cooper (Jira)

unread,
Jun 9, 2021, 6:13:01 PM6/9/21
to puppe...@googlegroups.com
Josh Cooper commented on New Feature PUP-3127
 
Re: LDAP - introduce LDAP-Certificat Directory

Since we haven't received feedback on the pull request or ticket for some time, I'm going to close this as won't do. Please reopen if there is continued interest.
This message was sent by Atlassian Jira (v8.13.2#813002-sha1:c495a97)
Atlassian logo
Reply all
Reply to author
Forward
0 new messages