[Pkg-freeipa-devel] freeipa-server backport to Jessie?

Timo Aaltonen tjaalton at debian.org
Tue Apr 14 10:01:31 UTC 2015


On 14.04.2015 12:15, Harald Dunkel wrote:
> Hi Timo,
> 
> On 04/14/15 07:41, Timo Aaltonen wrote:
>> On 13.04.2015 20:49, Paul Gevers wrote:
>>> Hi Harald,
>>>
>>> On 13-04-15 11:44, Harald Dunkel wrote:
>>>> would it be reasonable to hope for a backport of freeipa-\
>>>> server to Jessie?
>>>
>>> I may have missed something, but I don't think we have started the
>>> Jessie backports yet. Or do you mean something else?
>>
>> Server backport isn't too useful before replicas work, and that needs
>> libldap built against nss. Until that you're limited to single-server
>> setups.
>>
> 
> Of course I recognized that freeipa has a pretty huge list
> of versioned dependencies. Is there something that would be
> too difficult to backport to Jessie?

No, dogtag, bind-dyndb-ldap and freeipa itself should be all that's
needed, if you're ok with the single-server limitation.

Patching openldap to build libldap-nss-2.4-2 (or such) isn't trivial, as
the nss build would need patches of it's own (or lots of ifdefs)

http://pkgs.fedoraproject.org/cgit/openldap.git/commit/?id=592250ebfbcc7aa47f22bf1f8613fe20f33fd39a

> I really would like to avoid choosing another Linux distro
> for such a major infrastructure component.

I think a CentOS install would be the best bet for now.


-- 
t



More information about the Pkg-freeipa-devel mailing list