FreeIPA
banners
Contribute to FreeIPA!

From Free IPA

This isn't every single check-in between versions but will hopefully will provide the highlights of the changes.

Contents

[edit]

Version 1.2.1

  • Add ipa-compat-manage utility
  • Ensure the CA cert is always included when preparing a replica
  • Fix error in validation when editing new groups via the UI 471808
  • Fixed some crash conditions in the password plugin
[edit]

Version 1.2.0

  • Active Directory User Synchronization
  • Schema Compatibility Plug-in (native Solaris nss_ldap now works)
  • Fix group mapping /etc/ldap.conf so getent works 431603
  • The ipa-addservice command failed if the realm name was included in the principal name. 437566
  • The ipa_webgui service did not start after the initial installation. 440475
  • IPA does not handle group names with spaces properly. 450613
  • The ipa-moduser -f command may not change the appearance of the user's first name when shown as the full name. 451318
  • The potential existed for Directory Server to crash if you nested groups too deeply. 451358
  • IPA replicas did not fully synchronize in single-master, dual-replica topology environments. 468732
  • Fix error in validation when adding new groups via the UI
  • Add list of DNs that are not controlled by password policy. 471130
[edit]

Version 1.1.0

  • Ensure that the realm name is upper-case.
  • When an LDAP connection fails, display the host one is trying to connect to. 450111
  • Add our own SIGTERM handler to ipa_webgui so we can do clean shutdowns. 450211
  • Make it clear which packages are being configured and which aren't. 450175
  • Add -p/--password option so the DM password can be passed on the command-line.
  • Don't make the search criteria lower-case so one can do case-sensitive searches (such as looking for HTTP principals). 449975
  • Man page improvements.
  • Fix issue of double logging in ipa_error.log.
  • Add a Not Found (404) template
  • Only print a traceback on 500 errors.
  • Don't prompt regarding previous DS installations in unattended mode.
  • Add two new options, --addattr and --setattr, to allow arbitrary attributes to be added and set when a new user or group is created. 449006
  • Make password not mandatory in ipa-adduser
  • Make ipa_kpasswd listen on each single interface explicitly instead of 0.0.0.0.
  • Fix the case where domain != lower(REALM) add the domain to the ipa.conf file for apps that need to know. This should fix a bug in the replica setup.
  • Move admin into cn=users,cn=accounts
  • Move non-user-configurable configuration elements to TurboGears app.cfg file. 432908
  • Change file mode of log files to 600. 446869
  • Ensure hostnames are lower during installation and when adding service princs. 447381
  • Remove broken link for IE configuration and replace sample domain/realm. Also fix some HTML errors. 447445
  • Do uniqueness check on phone numbers and cn entered via the UI. 445286
  • Don't pass the Directory Manager password on the command-line to ldapmodify. 446865
  • Use split instead of find as split does not fail to provide a complete component if no '.' is found. This should better handle a realm with no periods in it.
  • Improve DNA plugin and ensure that the numbers it hands out are unique.
  • Don't ask the user again if he wants to replace bind configuration files if he specified --setup-bind. 430090
  • Make sure all services are stopped during uninstall. 440322
  • Hack to not require a First Name in the UI for the admin user since it lacks the inetOrgPerson objectclass.
  • Display information on how to uninstall a partially installed server. 442454
  • Include information on where to look if a hostname resolves to localhost. 442812
  • On IPA Servers configure PAM and nss_ldap to connect to ourselves using localhost.
  • Detect existing DS instances and prompt for removal during replica install.
  • Don't allow the IPA server service principals to be removed.
  • Move entire web space to be rooted in /ipa
  • Add --verbose option so the HTTP headers and XML request/response can be seen in the ipa-* tools. 443987
  • Fixed various memory leaks in memberOf plug-in.
  • Make sure we always have the [domain-realm] section or kerberos libs misbehave.
[edit]

Version 1.0.0

Lots of bug fixes

[edit]

Version 0.99

Feature complete

Retrieved from "http://www.freeipa.org/page/Changelog"
Views Article Discussion Edit History
Personal tools:  Log in / create account
Toolbox What links here Related changes Upload file Special pages Printable version