Name: | ipa-client |
---|---|
Version: | 4.9.12 |
Release: | 11.0.1.module+el8.9.0+90122+3305dc1d |
Architecture: | x86_64 |
Module: | idm:DL1:8090020231201152514:3387e3d0 |
Group: | Unspecified |
Size: | 270773 |
License: | GPLv3+ |
RPM: | ipa-client-4.9.12-11.0.1.module+el8.9.0+90122+3305dc1d.x86_64.rpm |
Source RPM: | ipa-4.9.12-11.0.1.module+el8.9.0+90122+3305dc1d.src.rpm |
Build Date: | Fri Jan 12 2024 |
Build Host: | build-ol8-x86_64.oracle.com |
Vendor: | Oracle America |
URL: | http://www.freeipa.org/ |
Summary: | IPA authentication for use on clients |
Description: | IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). If your network uses IPA for authentication, this package should be installed on every client machine. This package provides command-line tools for IPA administrators. |
- Resolves: 2242828 Invalid CSRF protection (CVE-2023-5455)
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- ipa-kdb: Make AD-SIGNEDPATH optional with krb5 DAL 8 and older Resolves: RHEL-12198
- Require krb5 release 1.18.2-25 or later Resolves: RHBZ#2234711
- ipatests: fix test_topology Resolves: RHBZ#2232351 - Installer: activate nss and pam services in sssd.conf Resolves: RHBZ#2216532
- ipa-kdb: fix error handling of is_master_host() Resolves: RHBZ#2214638 - ipatests: enable firewall rule for http service on acme client Resolves: RHBZ#2230256 - User plugin: improve error related to non existing idp Resolves: RHBZ#2224572 - Prevent admin user from being deleted Resolves: RHBZ#1821181 - Fix memory leak in the OTP last token plugin Resolves: RHBZ#2227783
- Upgrade: fix replica agreement, fix backported patch Related: RHBZ#2216551
- kdb: Use-krb5_pac_full_sign_compat() when available Resolves: RHBZ#2176406 - OTP: fix-data-type-to-avoid-endianness-issue Resolves: RHBZ#2218293 - Upgrade: fix replica agreement Resolves: RHBZ#2216551 - Upgrade: add PKI drop-in file if missing Resolves: RHBZ#2215336 - Use the python-cryptography parser directly in cert-find Resolves: RHBZ#2164349 - Backport test updates Resolves: RHBZ#221884
- Rely on sssd-krb5 to include SSSD-generated krb5 configuration Resolves: RHBZ#2214563
- Use the OpenSSL certificate parser in cert-find Resolves: RHBZ#2209947