[AMBARI-11362] Kerberos: Creating principals in AD when special characters are involved causes failures - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 2.0.0
Fix Version/s: 2.1.0
Component/s: ambari-server
Labels:

Description

Creating principals in AD when special characters are involved causes failures.

The following characters in the CN need to be escaped:

/ , \ # + < > ; " =

Note: javax.naming.ldap.Rdn will properly escape relative distinguished name parts.

The following characters in the sAMAccountName need to be removed or replaced:

[ ] : ; | = + * ? < > / \

Note: This needs to be done explicitly within the attributes set if a relevant entry exists.

// Replace the following _illegal_ characters: [ ] : ; | = + * ? < > / \
value = value.toString().replaceAll("\\[|\\]|\\:|\\;|\\||\\=|\\+|\\*|\\?|\\<|\\>|\\/|\\\\", "_");

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

AMBARI-11362_01.patch
24/May/15 14:17
7 kB
Robert Levas

Activity

People

Assignee:: Robert Levas

Reporter:: Robert Levas

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 23/May/15 21:31

Updated:: 25/May/15 15:19

Resolved:: 25/May/15 13:45