Open EmptyByte opened 2 weeks ago
Well even if I pass the whole thing it doesn't get added - it doesn't fail either. It is just not added.
certmapdata:
- certificate: 'MIIHNzCxxxxxxWWe'
issuer: 'C=CO,O=Acme,CN=Acme Users CA'
subject: 'UID=11111,C=CO,O=Acme,CN=DOE John'
data: 'X509:<I>C=CO,O=Acme,CN=Acme Users CA<S>UID=11111,C=CO,O=Acme,CN=DOE John'
There seems to be a bug in the certmap data within the ipauser.py
In ansible, the certificate is passed which should be enough to build the certmap
But that doesn't create the certmap data. In fact it is ignored. (works in CLI and GUI)
From the ipauser.py module
Documentation:
certmapdatalist / elements =dictionary -- List of certificate mappings. Only usable with IPA versions 4.5 and up.
certificate string Base-64 encoded user certificate data string Certmap data issuer string Issuer of the certificate subject string |Subject of the certificate