-
Bug
-
Resolution: Won't Do
-
Major
-
rhel-7.9.z
-
None
-
Important
-
2
-
rhel-idm-ipa
-
ssg_idm
-
5
-
False
-
False
-
-
None
-
2025-Q1-Bravo-S3, 2025-Q1-Bravo-S4
-
None
-
None
-
None
https://pagure.io/freeipa/issue/9370
Cloned from: https://pagure.io/freeipa/issue/9370 FreeIPA KDB driver stores and allows to retrieve a master key used by the Kerberos realm. This functionality is implemented with `ipadb_fetch_master_key()` and `ipadb_store_master_key_list()` but they assume there is only one key stored (to be stored). Additionally, KDB driver does not provide `fetch_master_key_list()` (none of the in-tree krb5 KDB drivers provide a sensible version either). Storing more than one master key is needed to allow migration to a different encryption type.
- is duplicated by
-
RHEL-49450 Pagure #8628: kadmin's change_password command with -keepold option doesn't work [rhel-7]
-
- Closed
-