معرفی شرکت ها


ipa-server-trust-ad-4.6.8-5.el7.centos.6.x86_64.rpm


Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر

توضیحات

Virtual package to install packages required for Active Directory trusts
ویژگی مقدار
سیستم عامل Linux
توزیع CentOS 7
مخزن Centos updates x86_64
نام بسته ipa-server-trust-ad
نام فایل بسته ipa-server-trust-ad-4.6.8-5.el7.centos.6.x86_64.rpm
نسخه بسته 4.6.8
انتشار بسته 5.el7.centos.6
معماری بسته x86_64
نگهدارنده -
تاریخ ساخت Thu 10 Jun 2021 06
هاست سازنده x86-02.bsys.centos.org
نوع بسته .rpm
آدرس صفحه اصلی http://www.freeipa.org/
مجوز GPLv3+
حجم دانلود 284K
حجم نصب 267.198K
Cross-realm trusts with Active Directory in IPA require working Samba 4 installation. This package is provided for convenience to install all required dependencies at once.


جایگزین ها



نیازمندی

مقدار نام
- /bin/sh
- /bin/sh
- /bin/sh
- /bin/sh
- /usr/bin/python2
- /usr/sbin/update-alternatives
- /usr/sbin/update-alternatives
- /usr/sbin/update-alternatives
= 4.6.8-5.el7.centos.6 ipa-common
= 4.6.8-5.el7.centos.6 ipa-server
- libc.so.6()(64bit)
- libc.so.6(GLIBC_2.14)(64bit)
- libc.so.6(GLIBC_2.2.5)(64bit)
- libc.so.6(GLIBC_2.3)(64bit)
- libc.so.6(GLIBC_2.3.4)(64bit)
- libc.so.6(GLIBC_2.4)(64bit)
- libc.so.6(GLIBC_2.8)(64bit)
- libcom_err.so.2()(64bit)
- libcrypto.so.10()(64bit)
- libcrypto.so.10(libcrypto.so.10)(64bit)
- libdl.so.2()(64bit)
- libk5crypto.so.3()(64bit)
- libk5crypto.so.3(k5crypto_3_MIT)(64bit)
- libkrb5.so.3()(64bit)
- libkrb5.so.3(krb5_3_MIT)(64bit)
- liblber-2.4.so.2()(64bit)
- libldap_r-2.4.so.2()(64bit)
- libndr.so.0()(64bit)
- libndr.so.0(NDR_0.0.1)(64bit)
- libnspr4.so()(64bit)
- libnss3.so()(64bit)
- libnss3.so(NSS_3.2)(64bit)
- libnss3.so(NSS_3.4)(64bit)
- libnssutil3.so()(64bit)
- libplc4.so()(64bit)
- libplds4.so()(64bit)
- libpthread.so.0()(64bit)
- libpthread.so.0(GLIBC_2.2.5)(64bit)
- libsamba-passdb.so.0()(64bit)
- libsamba-passdb.so.0(SAMBA_PASSDB_0.2.0)(64bit)
- libsamba-util.so.0()(64bit)
- libsamba-util.so.0(SAMBA_UTIL_0.0.1)(64bit)
- libsmbconf.so.0()(64bit)
- libsmbconf.so.0(SMBCONF_0)(64bit)
- libsmbldap.so.2()(64bit)
- libsmbldap.so.2(SMBLDAP_0)(64bit)
- libsmbldap.so.2(SMBLDAP_1)(64bit)
- libsmbldap.so.2(SMBLDAP_2)(64bit)
- libsmime3.so()(64bit)
- libssl3.so()(64bit)
- libsss_idmap
- libsss_idmap.so.0()(64bit)
- libsss_idmap.so.0(SSS_IDMAP_0.4)(64bit)
- libtalloc.so.2()(64bit)
- libtalloc.so.2(TALLOC_2.0.2)(64bit)
- libtevent.so.0()(64bit)
- python
- python-libsss_nss_idmap
- python-sss
- rtld(GNU_HASH)
>= 4.10.0 samba
- samba-python
- samba-winbind


ارائه دهنده

مقدار نام
= 4.6.8 freeipa-server-trust-ad
= 4.6.8-5.el7.centos.6 ipa-server-trust-ad
= 4.6.8-5.el7.centos.6 ipa-server-trust-ad(x86-64)


نحوه نصب


نصب پکیج rpm ipa-server-trust-ad:

    sudo yum localinstall ipa-server-trust-ad-4.6.8-5.el7.centos.6.x86_64.rpm


فایل ها

مسیرها
/etc/dbus-1/system.d/oddjob-ipa-trust.conf
/etc/oddjobd.conf.d/oddjobd-ipa-trust.conf
/usr/lib64/krb5/plugins/libkrb5/winbind_krb5_locator.so
/usr/lib64/samba/pdb/ipasam.so
/usr/libexec/ipa/oddjob/com.redhat.idm.trust-fetch-domains
/usr/sbin/ipa-adtrust-install
/usr/share/doc/ipa-server-trust-ad-4.6.8
/usr/share/doc/ipa-server-trust-ad-4.6.8/Contributors.txt
/usr/share/doc/ipa-server-trust-ad-4.6.8/README.md
/usr/share/ipa/smb.conf.empty
/usr/share/licenses/ipa-server-trust-ad-4.6.8
/usr/share/licenses/ipa-server-trust-ad-4.6.8/COPYING
/usr/share/man/man1/ipa-adtrust-install.1.gz


گزارش تغییرات

تاریخ آخرین تغییر جزئیات
2021-06-08

Roll in CentOS Branding

2021-05-11

Resolves: #1959349 - Need to bump pki + ds version

2021-04-06

Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
ipa-kdb: fix compiler warnings
ipa-kdb: add missing prototypes
ipa-kdb: reformat ipa_kdb_certauth
ipa-kdb: mark test functions as static
ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
Resolves: #1835741 krb5kdc crashing on ipa server
Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.

2021-01-29

Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
wgi/plugins.py: ignore empty plugin directories
Resolves: #1895197 improve IPA PKI susbsystem detection by other means than a directory presence, use pki-server subsystem-find
Improve PKI subsystem detection
ipatests: add test for PKI subsystem detection
ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
Add more indices
Resolves: #1884819 IdM Web UI shows users as disabled
fix cert-find errors in CA-less deployment
Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
CAless installation: set the perms on KDC cert file
ipatests: check KDC cert permissions in CA less install
Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
WebUI: Fix jQuery DOM manipulation issues
Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
fix iPAddress cert issuance for >1 host/service

2020-06-18

Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset

2020-06-05

Resolves: #1842950 ipa-adtrust-install fails when replica is offline
ipa-adtrust-install: avoid failure when replica is offline
Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
WebUI: Apply jQuery patch to fix htmlPrefilter issue

2020-05-12

Resolves: #1834385 Man page syntax issue detected by rpminspect
Man pages: fix syntax issues
Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
Make check_required_principal() case-insensitive
Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1

2020-04-15

Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
Add interactive prompt for the LDAP bind password to ipa-getkeytab
CVE-2020-1722: prevent use of too long passwords

2020-04-02

Resolves: #1819725 - Rebase IPA to latest 4.6.x version
Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
Resolves: #1817922 - covscan memory leaks report
Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
Resolves: #1817918 - Secure tomcat AJP connector
Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd

2020-03-24

Resolves: #1754902 - Running ipa-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
Resolves: #1404770 - ID Views: do not allow custom Views for the masters
idviews: prevent applying to a master
Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
install/updates: move external members past schema compat update
Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
pkinit setup: fix regression on master install
pkinit enable: use local dogtag only if host has CA
Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
ipa-cacert-manage man page: fix indentation
Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
adtrust.py: mention restarting sssd when adding trust agents
Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
Use default ssh host key algorithms
Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
smartcard: make the ipa-advise script compatible with authselect/authconfig
Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
upgrade: fix ipakra people entry 'description' attribute
krainstance: set correct issuer DN in uid=ipakra entry
Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
ipa-server-certinstall manpage: add missing options
Resolves: #1206690 - UPG not being enforced properly
ipa user_add: do not check group if UPG is disabled
Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
WebUI: Fix notification area layout
Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
Fix indentation levels
ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
Don't save password history on non-Kerberos accounts

2019-12-04

Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
trust upgrade: ensure that host is member of adtrust agents

2019-11-26

Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
Do not run trust upgrade code if master lacks Samba bindings
Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
Make sure to have storage space for tag

2019-10-30

Resolves: #1762317 - ipa-backup command is failing on rhel-7.8
ipa-backup: fix python2 issue with os.mkdir

2019-09-30

Resolves: #1755223 - Sub-CA key replication failure
Handle missing LWCA certificate or chain
Fix CustodiaClient ccache handling
CustodiaClient: use ldapi when ldap_uri not specified
CustodiaClient: fix IPASecStore config on ipa-4-7
Bump krb5 min version

2019-09-24

Resolves: #1754494 - ipa-replica-install does not enforce --server option
replica install: enforce --server arg
Resolves: #1729638 - ipa_kdb: assertion failure from NULL lcontext pointer to ldap_get_values_len()
Fix segfault in ipadb_parse_ldap_entry()
Log INFO message when LDAP connection fails on startup
Fix NULL pointer dereference in maybe_require_preauth()
Resolves: #1636765 - ipa-restore set wrong file permissions and ownership for /var/log/dirsrv/slapd- directory
ipa-restore: Restore ownership and perms on 389-ds log directory

2019-09-17

Resolves: #1752005 - Keyrings should not be used in containerized environment
Don't configure KEYRING ccache in containers
Resolves: #1751951 - When master's IP address does not resolve to its name, ipa-replica-install fails
Add container environment check to replicainstall
Resolves: #1750700 - when migrating trusted domain object structure, add default access control definitions, if they were missing in old trust objects
add default access control when migrating trust objects
adtrust: add default read_keys permission for TDO objects
Disable deprecated-lambda check in adtrust upgrade code