Timothy Pearson
a619f64455
Fix a few minor issues with PKI certificate generation
9 years ago
Timothy Pearson
6cddf7dd1c
Minor fixup to cert generation code
9 years ago
Timothy Pearson
07d094fd32
Extend PKCS certificate generation routines
...
This breaks the ABI
9 years ago
Timothy Pearson
c6eab472be
Add PKCS methods
9 years ago
Timothy Pearson
30b251b05b
Clean up revoked certificates when done updating CRL
9 years ago
Timothy Pearson
ba7bc5afac
Fix up certificate expiry detection
9 years ago
Timothy Pearson
c714661bc9
Add certificate store attribute access method
9 years ago
Timothy Pearson
521c4ed590
Add additional CRL manipulation methods
9 years ago
Timothy Pearson
0fce8b42b6
Store CRL expiry in LDAP
9 years ago
Timothy Pearson
efb81441de
Add CRL generation
9 years ago
Timothy Pearson
a97c0c3d54
Implement several methods required for PKI certificate management
9 years ago
Timothy Pearson
54d8d2580c
Extend user key and certificate generation methods
9 years ago
Timothy Pearson
0a81ad9d6e
Fix CN/DN ordering
9 years ago
Timothy Pearson
bc95fa92b0
Properly set CRL URL and fix up a few other glitches
9 years ago
Timothy Pearson
f0eeda5dc8
Allow CRL URL to be set via configuration file
9 years ago
Timothy Pearson
6df22c8ca2
Fix up Kerberos PKI certificate generation
9 years ago
Timothy Pearson
d6f004658d
Allow certificate expiry to be set
9 years ago
Timothy Pearson
f4afc1290d
Extend CA expiry to 1 year
9 years ago
Timothy Pearson
8b16aef38d
Fix incorrect login causing PAM fatal error message
9 years ago
Timothy Pearson
bea400f197
Fix security hole when Kerberos credential caching is enabled
...
The prior PAM stack configuration, while unfortunately present in many online examples, allows storing of an arbitrary cached password for non-Kerberos users by simply entering it twice
10 years ago
Timothy Pearson
5bfd539b84
Make bonding and unbonding methods slightly more robust
11 years ago
Timothy Pearson
571e1739fb
Fix LDAP CA root file configuration
11 years ago
Timothy Pearson
39c401b796
Look for CA file in correct location on bonded machines
11 years ago
Timothy Pearson
2ac300ccc2
Do not replicate olcGlobal by default
11 years ago
Timothy Pearson
3729eac510
Fix incorrect certificate CA file in ldap client configuration
11 years ago
Timothy Pearson
bac7789f94
Use shared realm certificate file name to allow syncrepl to work
11 years ago
Timothy Pearson
a512090138
Use more precise syncrepl configuration
11 years ago
Timothy Pearson
a257ac4ffe
Fix failure to use provided error string handler in getRealmCAMaster
11 years ago
Timothy Pearson
c5ae1e593d
Fix syncrepl retry timeout and enable hdb replication
11 years ago
Timothy Pearson
a9affe1102
Properly set up syncrepl
11 years ago
Timothy Pearson
c8902fca04
Add missing data fields to LDAPMasterReplicationInfo structure
11 years ago
Timothy Pearson
8a439f8521
Add a number of methods to enable multi-master replication
11 years ago
Timothy Pearson
5b8ec508a0
Fix failure when long Kerberos commands are used
...
This failure was due to an obscure ASCII sequence used in the output of kadmin
11 years ago
Timothy Pearson
8899bee01d
Fix cron script failure
11 years ago
Darrell Anderson
91573227c6
Cleanup output clutter.
12 years ago
Timothy Pearson
3f8b38c5f2
Add paged search capability
12 years ago
Timothy Pearson
98d9e442c4
Add ability to control PAM options including credential caching and home directory creation
12 years ago
Timothy Pearson
52d15ff717
Reload OpenLDAP when certificate file changes
12 years ago
Timothy Pearson
1e9b683727
Set proper permissions on root certificate files
12 years ago
Timothy Pearson
f101efbd4d
Add exportKeytabForPrincipal method
12 years ago
Timothy Pearson
54f609f3da
Merge branch 'master' of http://scm.trinitydesktop.org/scm/git/libtdeldap
12 years ago
Timothy Pearson
d1764a4dae
Add new machine add method
...
Add stubs for machine and service modification methods
12 years ago
Timothy Pearson
42072e938e
Set executable flag on cron scripts
12 years ago
Timothy Pearson
fdef66d8f2
Fix kinit and ktutil log output
12 years ago
Timothy Pearson
fae0948a28
Move core code from the bonding utility to this library
12 years ago
Timothy Pearson
e0f5e6ac4e
Fix FBTFS
12 years ago
Timothy Pearson
c2654f5408
Fix unusual glitch caused by inadvertent double application of a patch
12 years ago
Timothy Pearson
9d5bebacf3
Move bonding routines into core library
12 years ago
Timothy Pearson
660b499a22
Remove user from member groups before deletion
12 years ago
Timothy Pearson
0794d3cc44
Fix FTBFS with older OpenLDAP versions
12 years ago