auth_kerb.conf error when using external authentication and foreman-installer
I use these parameters with foreman-installer : foreman-installer --foreman-ipa-authentication=true --foreman-pam-service=foreman-prod
The keytab is retrieved and is in /etc/httpd/conf/http.keytab
The pam service is created and is in /etc/pam.d/foreman-prod
But the config file /etc/httpd/conf.d/05-foreman-ssl.d/auth_kerb.conf is not correctly generated :
Krb5KeyTab line has no value
require pam-account has no value
systemctl status httpd :
Syntax error on line 9 of /etc/httpd/conf.d/05-foreman-ssl.d/auth_kerb.conf:
Krb5KeyTab takes one argument, Location of Kerberos V5 keytab file.
#1 Updated by Dominic Cleal over 4 years ago
- Project changed from Foreman to Installer
- Category set to Foreman modules
- Legacy Backlogs Release (now unused) set to 161
The templates/auth_kerb.conf.erb template appears to rely on having variables in-scope, but the variables it's accessing are defined in the
foreman class and not
foreman::config where it's used. The template also has no test coverage.
#6 Updated by Dominic Cleal over 4 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset puppet-foreman|837849846c43ca4dcb44f8c61e039c543c576968.