FreeIPA 4.9.11 Bugfix Release

      Keine Kommentare zu FreeIPA 4.9.11 Bugfix Release
FreeIPA Logo

FreeIPA ist ein von RedHat unterstütztes Open-Source Softwareprojekt, dass als Ziel hat ein Identität-, Policy- und Auditsystem zur Verfügung zu stellen. Dabei geht FreeIPA weiter als vergleichsweise das Active Directory von Microsoft oder eDirectory von Novell und vereint viele Open-Source Technologien zu einem System. Die Entwickler haben das Bugfix Release 4.9.11 veröffentlicht, dass folgende Hauptänderungen durchführt:

FreeIPA Funktionen

  • Integrated security information management solution combining Linux (Fedora), 389 Directory ServerMIT Kerberos, NTP, DNSDogtag certificate systemSSSD and others.
  • Built on top of well known Open Source components and standard protocols
  • Strong focus on ease of management and automation of installation and configuration tasks.
  • Full multi master replication for higher redundancy and scalability
  • Extensible management interfaces (CLI, Web UI, XMLRPC and JSONRPC API) and Python SDK

FreeIPA 4.9.11 Release Notes

  • 9083: Support MIT Kerberos KDB version 9
  • 9187: [UX] Preserving a user account produces output saying it was deleted
  • 9228: ipa-client-install does not maintain server affinity during installation
  • 9237: Show order in sudo rule list in web interface
  • 9258: Do not add TLS CA configuration to ldap.conf anymore

Resolved tickets

  • #8946 RFE: Add label name to Certificates section in WebUI to enable testing
  • #8951 Test for RFE ipa-healthcheck tool can include check to see if the system is FIPS enabled or not
  • #9062 [ipatests] SID generation and test_xmlrpc/test_user_plugin.py
  • #9083 Support MIT Kerberos KDB version 9
  • #9158 Internal error when setting dnsconfig or dnsforwardzone forwarders.
  • #9160 cryptography.utils.register_interface is scheduled for removal
  • #9161 Nightly test failure in test_selinuxusermap.py::test_selinuxusermap::test_misc
  • #9183 Timeout issue in test_installation.py when using interactive mode
  • #9185 Fix missing parameter for Suse ipaplatform task
  • #9187 (rhbz#2022028) [UX] Preserving a user account produces output saying it was deleted
  • #9188 (rhbz#2098187) Add warning for empty targetattr when creating ACI with RBAC
  • #9189 ipatests: Fix test_idp.py for downstream idm-ci
  • #9190 ipatests.test_ipaserver.test_secure_ajp_connector failing with python 3.6.8 with: TypeError: a bytes-like object is required, not ‘str’
  • #9192 (rhbz#2094672) IdM WebUI Pagination Size should not allow empty value
  • #9198 [Tracker] nightly failure: after ipa trust-add, cred cache contains cifs/master.ipa.test@IPA.TEST instead of admin principal
  • #9204 [Tracker] In ipa-server-upgrade ca_upgrade_schema() results in unnecessary pki restarts
  • #9206 (rhbz#2109236) ldap bind occurs when admin user changes password with gracelimit=0
  • #9207 Failure in AzurePipeline.freeipa (GATING InstallDNSSECFirst_1_to_5)
  • #9208 ap: Doc build fails against Sphinx 5.1.0
  • #9211 (rhbz#2109243) RFE: Allow grace login limit to be set in IPA WebUI.
  • #9212 (rhbz#2115475) Nightly test failure in test_user.py::test_user::test_password_expiration_notification
  • #9214 Nightly failure in webui test test_subid.py::test_subid::test_subid_range_deletion_not_allowed
  • #9218 (rhbz#2116966) Random failure in test-winsyncmigrate
  • #9225 pytest library module rename from quarkus to keycloak
  • #9226 (rhbz#2124547) Infinite redirect loop in the WebUI for user root
  • #9228 (rhbz#2148258) ipa-client-install does not maintain server affinity during installation
  • #9230 build failure against gcc < 11
  • #9231 /run/ipa/ccaches uses all available tmpfs space
  • #9237 Show order in sudo rule list in web interface
  • #9243 (rhbz#2127833) Password Policy Grace login limit allows invalid maximum value
  • #9245 (rhbz#2117167) `extdom` plugin can return object from a wrong domain.
  • #9246 Nightly test failure in test_user_permissions.TestInstallClientNoAdmin
  • #9248 (rhbz#2124369) OTP token sync always returns OK even with random numbers
  • #9249 (rhbz#2108630) Deprecated feature idnssoaserial in IdM appears when creating reverse dns zones
  • #9252 (rhbz#2129895) [DDF] The Examples in the RHEL ipa(1) man page show “ipa help commands” with content for “ipa halp topics” and “ipa hel
  • #9254 Exclude installed policy module file from RPM verification
  • #9255 ipapython.dn_ctypes is not compatible with libldap 2.6
  • #9257 (rhbz#2104185) Introduction of URI records for kerberos breaks location functionality
  • #9258 (rhbz#2094673) Do not add TLS CA configuration to ldap.conf anymore
  • #9259 (rhbz#2144737) vault interoperability with older RHEL systems is broken
  • #9269 (rhbz#2143224rhbz#2075452) ipa-certupdate does not restart/reload KDC on servers
  • #9271 (rhbz#2143224) Support PKINIT with ipa-client-install
  • #9274 ipa-join: pass the curl write function by name, not address

Quelle: Releases/4.9.11 – FreeIPA

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert