rhel7: ipa-client-install modifies /etc/openldap/ldap.conf in a way which is unhandy for openldap-clients
Issue
ipa-client-install
modifies/etc/openldap/ldap.conf
in a way which is unhandy for openldap-clients-
Hash comment confuses ldapsearch; if IPA is installed, the original /etc/openldap/ldap.conf is modified by adding lines like:
#TLS_CACERT /etc/ipa/ca.crt # modified by IPA
-
It appears that removing the first hash but leaving "# modified by IPA" in place, the line is invalid and skipped when using ldapsearch.
Environment
- Red Hat Enterprise Linux (RHEL) 7
- IPA, IdM
- ipa-client
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.