t-woerner
commented
8 months ago I think the commit message is not correct:
"The CLI commands that manage these permissions are dnszone-add-delegation and dnszone-remove-delegation."
Closed rjeffman closed 8 months ago
t-woerner
commented
8 months ago I think the commit message is not correct:
"The CLI commands that manage these permissions are dnszone-add-delegation and dnszone-remove-delegation."
rjeffman
commented
8 months ago Commit message was also fixed.
IPA DNS Zones management can be delegated by adding a "Manage DNS zone" permission. The CLI commands that manage these permissions are dnszone-add-permission and dnszone-remove-permission.
The ansible-freeipa module ipadnszone did not have this capability, and it now support dnszone per-zone management delegation by setting the module parameter 'permission'. If set to 'true' the permission will be assigned to the zone, if set to false the permission will be removed.