[ol9_appstream] ipa-selinux-4.10.0-6.0.1.el9.noarch

Name:	ipa-selinux
Version:	4.10.0
Release:	6.0.1.el9
Architecture:	noarch
Group:	Unspecified
Size:	16349
License:	GPLv3+
RPM:	ipa-selinux-4.10.0-6.0.1.el9.noarch.rpm
Source RPM:	ipa-4.10.0-6.0.1.el9.src.rpm
Build Date:	Wed Oct 19 2022
Build Host:	build-ol9-x86_64.oracle.com
Vendor:	Oracle America
URL:	http://www.freeipa.org/
Summary:	FreeIPA SELinux policy
Description:	Custom SELinux policy module for FreeIPA

Changelog (Show File list) (Show related packages)

Thu Sep 29 2022 Alan Steinberg <alan.steinberg@oracle.com> - 4.10.0-6.0.1

- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Set minimum version of samba requirement to OL9.1 version.

Fri Aug 19 2022 Florence Blanc-Renaud <flo@redhat.com> - 4.10.0-6

- Resolves: rhbz#2110014 ldap bind occurs when admin user changes password with gracelimit=0
- Resolves: rhbz#2112901 RFE: Allow grace login limit to be set in IPA WebUI
- Resolves: rhbz#2115495 group password policy by default does not allow grace logins
- Resolves: rhbz#2116966 ipa-replica-manage displays traceback: Unexpected error: 'bool' object has no attribute 'lower'

Thu Jul 28 2022 Francisco Trivino <ftrivino@redhat.com> - 4.10.0-5
```
- Resolves: rhbz#2109645
  - Rebuild for samba-4.16.3-101.el9
```
Thu Jul 21 2022 Francisco Trivino <ftrivino@redhat.com> - 4.10.0-4
```
- Resolves: rhbz#2109645
  - Rebuild for samba-4.16.3-100.el9
```

Fri Jul 15 2022 Florence Blanc-Renaud <flo@redhat.com> - 4.10.0-3

- Resolves: rhbz#2105294 IdM WebUI Pagination Size should not allow empty value

Thu Jun 30 2022 Florence Blanc-Renaud <frenaud@redhat.com> - 4.10.0-2

- Resolves: rhbz#2091988 [RFE] Add code to check password expiration on ldap bind

Thu Jun 30 2022 Florence Blanc-Renaud <frenaud@redhat.com> - 4.10.0-1

- Resolves: rhbz#747959 [RFE] Support random serial numbers in IPA certificates
- Resolves: rhbz#2100227 [UX] Preserving a user account produces output saying it was deleted

Fri Jun 17 2022 Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.10-1

- Resolves: rhbz#2079469 [Rebase] Rebase ipa to latest 4.9.x release
- Resolves: rhbz#2012911 named journalctl logs shows 'zone testrealm.test/IN: serial (serialnumber) write back to LDAP failed.'
- Resolves: rhbz#2069202 [RFE] add support for authenticating against external IdP services using OAUTH2 preauthenticaiton mechanism provided by SSSD
- Resolves: rhbz#2083218 ipa-dnskeysyncd floods /var/log/messages with DEBUG messages
- Resolves: rhbz#2089750 RFE: Improve error message with more detail for ipa-replica-install command
- Resolves: rhbz#2091988 [RFE] Add code to check password expiration on ldap bind
- Resolves: rhbz#2094400 [RFE] ipa-client-install should provide option to enable subid: sss in /etc/nsswitch.conf
- Resolves: rhbz#2096922 secret in ipa-pki-proxy.conf is not changed if new requiredSecret value is present in /etc/pki/pki-tomcat/server.xml

Wed Apr 06 2022 Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-8

- Resolves: rhbz#2067971 Consequences of FIPS crypto policy tightening in RHEL 9
  - tests: ensure AD-SUPPORT subpolicy is active in more cases
  - ipatests: fix check for AD topology being present

Thu Mar 24 2022 Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-7

- Resolves: rhbz#2067971 Consequences of FIPS crypto policy tightening in RHEL 9
  - KRB instance: make provision to work with crypto policy without SHA-1 HMAC types
  - tests: ensure AD-SUPPORT subpolicy is active
  - ipatests: extend AES keyset to SHA2-based ones
  - freeipa.spec: bump crypto-policies dependency for CentOS 9 Stream
  - Kerberos instance: default to AES256-SHA2 for master key encryption
  - test_otp: do not use paramiko unless it is really needed
  - test_krbtpolicy: skip SPAKE-related tests in FIPS mode
  - Support AES for KRA archival wrapping
  - Set AES as default for KRA archival wrapping