phase object list of instances classes suffix class suffix class { 'phase' : phase, 'fileFd' : LOG_MAIN_FD } 'debug get first instance' { 'instance' : instance, 'fileFd' : LOG_MAIN_FD } { 'fileFd' : LOG_MAIN_FD, 'content' : 'my instance is : %s' % instance.getName() } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'set-log-rotation-policy-prop', 'objectType' : 'policy-name', 'objectName' : 'Size Limit Rotation Policy', 'optionsString' : '--set file-size-limit:15mb', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'set-plugin-prop', 'objectType' : 'plugin-name' , 'objectName' : 'UID Unique Attribute', 'optionsString' : '--set enabled:true', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'set-plugin-prop' , 'objectType' : 'plugin-name' , 'objectName' : 'Referential Integrity', 'optionsString' : '--set enabled:true', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD} { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToAdd' : QA_dynamic_group1_dn, 'listAttributes' : listAttr, 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToAdd' : QA_dynamic_group2_dn, 'listAttributes' : listAttr, 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToAdd' : QA_dynamic_group3_dn, 'listAttributes' : listAttr, 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : "ou=QA Engineers,dc=com", 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'create-password-policy', 'objectType' : 'policy-name', 'objectName' : 'password_policy_group1', 'optionsString' : '--set allow-user-password-changes:true \ --type generic \ --set default-password-storage-scheme:"Salted SHA-1" \ --set password-attribute:userpassword', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } 'debug %s' % QA_dynamic_group1_dn { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'create-virtual-attribute', 'objectType' : 'name', 'objectName' : 'virtual attribute for password_policy_group1', 'optionsString' : '--type user-defined \ --set enabled:true \ --set attribute-type:ds-pwp-password-policy-dn \ --set group-dn:%s \ --set conflict-behavior:real-overrides-virtual \ --set value:"cn=password_policy_group1,cn=Password Policies,cn=config"' % QA_dynamic_group1_dn, 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'create-password-policy', 'objectType' : 'policy-name', 'objectName' : 'password_policy_group2', 'optionsString' : '--set allow-user-password-changes:true \ --type generic \ --set default-password-storage-scheme:"Salted MD5" \ --set password-attribute:userpassword', 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } 'debug %s' % QA_dynamic_group2_dn { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'subcommand' : 'create-virtual-attribute', 'objectType' : 'name', 'objectName' : 'virtual attribute for password_policy_group2', 'optionsString' : '--type user-defined \ --set enabled:true \ --set attribute-type:ds-pwp-password-policy-dn \ --set group-dn:%s \ --set conflict-behavior:real-overrides-virtual \ --set value:"cn=password_policy_group1,cn=Password Policies,cn=config"' % QA_dynamic_group2_dn, 'expectedRC' : 0, 'fileFd' : LOG_MAIN_FD } { 'location' : instance.getHost(), 'filename' : '%s/config/keystore.pin' % instance.getInstallDir(), 'format' : '""' } { 'location' : instance.getHost(), 'foldername' : SERVER_CERT_DIR, 'fileFd' : LOG_MAIN_FD } '---- Export the Server Certicate ----' { 'dsPath' : instance.getInstallDir(), 'location' : instance.getHost(), 'certAlias' : 'server-cert' , 'outputfile' : SERVER_CERT_FILE, 'storepass' : server_storepass, 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD, } { 'fileFd' : LOG_MAIN_FD } {'scheduler':scheduler} { 'client' : client, 'fileFd' : LOG_MAIN_FD } { 'fileFd' : LOG_MAIN_FD, 'content' : 'Create folder %s on %s ' % (CLIENT_CERT_TMP,client.getHost()) } { 'location' : client.getHost(), 'foldername' : CLIENT_KEYSTORE_DIR, 'fileFd' : LOG_MAIN_FD } { 'dsPath' : CLIENT_CERT_TMP, 'location' : client.getHost(), 'certAlias' : certAlias, 'dname' : USER_DN, 'storepass' : CLIENT_STOREPASS, 'keystore' : CLIENT_KEYSTORE, 'keypass' : CLIENT_KEYPASS, 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD } '---- Self-Signing client Certificate : %s ---- ' % (certAlias) { 'dsPath' : CLIENT_CERT_TMP, 'location' : client.getHost(), 'certAlias' : certAlias, 'storepass' : CLIENT_STOREPASS, 'keypass' : CLIENT_KEYPASS, 'keystore' : CLIENT_KEYSTORE, 'storetype' : 'JKS' , 'fileFd' : LOG_MAIN_FD } '---- Export the client certificate : %s ---- ' % (certAlias) { 'dsPath' : CLIENT_CERT_TMP, 'location' : client.getHost(), 'certAlias' : certAlias, 'outputfile' : USER_CERT_FILE, 'storepass' : CLIENT_STOREPASS, 'keystore' : CLIENT_KEYSTORE, 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD } '---- Export the client certificate in RFC : %s ---- ' % (certAlias) { 'dsPath' : CLIENT_CERT_TMP, 'location' : client.getHost(), 'certAlias' : certAlias, 'outputfile' : USER_CERT_FILE_RFC, 'storepass' : CLIENT_STOREPASS, 'keystore' : CLIENT_KEYSTORE, 'format' : 'rfc', 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD } { 'location' : serverInstance.getHost(), 'filename' : '%s/config/keystore.pin' % serverInstance.getInstallDir(), 'format' : '""' } { 'location' : serverInstance.getHost(), 'remoteHost' : client.getHost(), 'fromDirectory' : SERVER_CERT_TMP, 'toDirectory' : REMOTE_SERVER_CERT_TMP, 'fileFd' : LOG_MAIN_FD } { 'location' : client.getHost(), 'remoteHost' : serverInstance.getHost(), 'fromDirectory' : CLIENT_CERT_TMP, 'toDirectory' : REMOTE_CLIENT_CERT_TMP, 'fileFd' : LOG_MAIN_FD } { 'fileFd' : LOG_MAIN_FD, 'content' : 'Import server certificate under %s on %s ' % (CLIENT_KEYSTORE,client.getHost()) } '---- Import the Server Certificate in the client keystore----' { 'dsPath' : CLIENT_CERT_TMP, 'location' : client.getHost(), 'certAlias' : 'server-cert', 'inputfile' : REMOTE_SERVER_CERT_FILE, 'storepass' : CLIENT_STOREPASS, 'keystore' : CLIENT_KEYSTORE, 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD } '---- Import the client Certificates %s in the server trustore' % (certAlias) { 'dsPath' : serverInstance.getInstallDir(), 'location' : serverInstance.getHost(), 'certAlias' : certAlias, 'keystore' : 'truststore', 'inputfile' : REMOTE_USER_CERT_FILE, 'storepass' : server_storepass, 'storetype' : 'JKS', 'fileFd' : LOG_MAIN_FD } { 'instance' : serverInstance, 'certAlias' : certAlias, 'client_cert_directory' : REMOTE_CLIENT_CERT_TMP, 'user_dn' : USER_DN, 'base_dn' : baseDN_for_userMapping, 'fileFd' : LOG_MAIN_FD } { 'fileFd' : LOG_MAIN_FD } { 'phase' : phase, 'fileFd' : LOG_MAIN_FD } { 'fileFd' : fileFd, 'content' : 'Create the user %s' % user_dn } '###### Add an entry ###### ' { 'location' : instance.getHost(), 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToAdd' : user_dn, 'listAttributes' : listAttr, 'expectedRC' : 0, 'fileFd' : fileFd } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : serverInstance.getLDAPPort(), 'dsBaseDN' : suffix.getSuffixDn(), 'dsScope' : 'base', 'dsFilter' : 'objectclass=*', 'dsInstanceDn' : user_dn, 'dsInstancePswd' : "userpassword", 'expectedRC' : 0, 'fileFd' : fileFd } { 'fileFd' : fileFd, 'content' : 'Add the aci to the user %s' % user_dn } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : base_dn, 'attributeName' : 'aci', 'newAttributeValue' : curr_aci, 'changetype' : 'add', 'expectedRC' : 0, 'fileFd' : fileFd } { 'location' : instance.getHost(), 'filename' : '%s/client_cert_rfc.txt ' % (client_cert_directory) } 'Certificate contents:\n %s' % cmdResult { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'entryToBeModified' : '%s' % LdifFile, 'expectedRC' : 0, 'fileFd' : fileFd } { 'dsPath' : instance.getInstallDir(), 'dsInstanceHost' : instance.getHost(), 'dsInstancePort' : instance.getLDAPPort(), 'dsInstanceDn' : DIRECTORY_INSTANCE_DN , 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD , 'DNToModify' : user_dn, 'attributeName' : 'userCertificate;binary', 'newAttributeValue' : ret_str, 'changetype' : 'modify', 'expectedRC' : 0, 'fileFd' : fileFd }