7d81a2fc14
Add support for group display names
...
Signed-off-by: Timothy Pearson <kb9vqf@pearsoncomputing.net>
5 months ago
a87563b171
Add memberOf overlay and enable
...
Signed-off-by: Timothy Pearson <kb9vqf@pearsoncomputing.net>
5 months ago
0d53fc4ef4
Update for OpenLDAP 2.5
...
OpenLDAP 2.5 switches from HDB to MDB. Update schema to match.
Signed-off-by: Timothy Pearson <kb9vqf@pearsoncomputing.net>
5 months ago
132d640313
Only enable supported SASL mechanisms
...
Without this, OpenLDAP will try to use SASL/SPNEGO instead of GSSAPI, which will fail on Heimdal servers
Signed-off-by: Timothy Pearson <kb9vqf@pearsoncomputing.net>
5 months ago
dfdfa69d74
Fix OpenLDAP GSSAPI authentication
...
Signed-off-by: Timothy Pearson <kb9vqf@pearsoncomputing.net>
5 months ago
c2754a3424
Drop automake build support.
...
Add basic cmake build instructions.
Delete empty folder doc.
Delete empty files NEWS, TODO and ChangeLog.
Write basic README file.
Signed-off-by: gregory guy <gregory-tde@laposte.net>
6 years ago
307a1a5326
conversion to the cmake building system
...
Signed-off-by: gregory guy <g-gregory@gmx.fr>
7 years ago
bc69297819
Add missing krb5ExtendedAttributes MAY to skelton HDB LDIF
10 years ago
e850ed29f0
Add preliminary krb5ExtendedAttributes field to HDB LDIF structure
...
See https://github.com/heimdal/heimdal/pull/141
11 years ago
61679fe4bf
Specify pkinit_principal_in_certificate
11 years ago
62a8d5e8c2
Store CRL expiry in LDAP
11 years ago
d21c892313
Add CRL support
11 years ago
18c4c37897
Use tdeldap library PKI certificate generation methods
11 years ago
fad84e2662
Enable substring index on uid
13 years ago
d63d6ad0d9
Add missing versioning information to main schema files
13 years ago
a92d23df86
Remove limits on root user
13 years ago
dc5d912164
Index entryUUID
13 years ago
4417da4a7a
Index entryCSN
...
Use more precise entryCSN timestamps
13 years ago
f35e568ef4
Add missing entryUUID values to base LDAP databases
13 years ago
2a0b3a4f1d
Add initial support for realm-wide certificate authority certificates
13 years ago
43ef321b01
Add ability to set up multi-master replication
13 years ago
98a380ce0d
Fix KDC verification failure due to bonding utility failing to obtain host heys
...
See http://kerberos.996246.n3.nabble.com/kadmin-kadmind-ext-keytab-issue-td11529.html for fix
13 years ago
79fcad728d
Use real TDE PEN instead of placeholder
14 years ago
ec23f4b717
Move primary realm wizard sources to separate directory
...
Add cert-updater
14 years ago
02cfa8d8af
Provide a range of user and certificate management options
14 years ago
023a331a3c
Add root CA certificate management
...
Allow anonymous writes on ldapi
14 years ago
4f186beefc
Add standard user group, certificates, etc
14 years ago
75044dd48a
Add ssl generation and storage
14 years ago
24377abde3
Fix incorrect schema files
14 years ago
ded257d222
Add utility to manage kadmind ACL list based on group membership
14 years ago
085abd94d8
Fix kadmind
14 years ago
ffa65c885b
New realm now functions almost fully
14 years ago
c39d52d4c9
Realm is now almost fully online
14 years ago
b6e7d7b515
Fix admin user login
14 years ago
bd05fcffd6
LDAP and Kerberos now partially work together
14 years ago
8daa9e9e96
Start working on kerberos
14 years ago
67f4ccf0b6
Fix last commit
14 years ago
ed617ebffe
OpenLDAP now initializes, but login is not possible and kadmin does not work yet
14 years ago
7df2e830ef
Add confskel installation
14 years ago
4c434b19f0
Add skeleton ldif file for loading
14 years ago
7d85a856d0
Add initial configuration file skeletons
14 years ago
Timothy Pearson
gregory guy
gregory guy