Skip to content

Disabling AD CA until containers ready #238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
danlavu merged 1 commit into from
Mar 12, 2026
Merged

Disabling AD CA until containers ready #238

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
106 changes: 56 additions & 50 deletions sssd_test_framework/roles/ad.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -153,18 +153,21 @@ def test_example_autofs(client: Client, ad: AD, nfs: NFS):
}
"""

self._ca = ADCertificateAuthority(self.host)
"""
AD Certificate Authority server management.

Provides certificate operations:
- Request certificates using templates
- Request smartcard certificates with Enrollment Agent
- Revoke certificates with configurable reasons
- Manage certificate holds
- Export certificates as PFX
- Retrieve certificate and template details
"""
#
# Disabling CA functionality until sssd-ci-container updated
#
# self._ca = ADCertificateAuthority(self.host)
# """
# AD Certificate Authority server management.
#
# Provides certificate operations:
# - Request certificates using templates
# - Request smartcard certificates with Enrollment Agent
# - Revoke certificates with configurable reasons
# - Manage certificate holds
# - Export certificates as PFX
# - Retrieve certificate and template details
# """

@property
def password_policy(self) -> ADPasswordPolicy:
Expand All @@ -184,44 +187,47 @@ def test_example(client: Client, ad: AD):
"""
return self._password_policy

@property
def ca(self) -> ADCertificateAuthority:
"""
AD Certificate Authority management.

Provides certificate operations:

- Request certificates using templates
- Request smartcard certificates with Enrollment Agent
- Revoke certificates with configurable reasons
- Manage certificate holds
- Export certificates as PFX
- Retrieve certificate and template details

.. code-block:: python
:caption: Example usage

@pytest.mark.topology(KnownTopology.AD)
def test_example(client: Client, ad: AD):
# Request smartcard certificate
cert, key, csr = ad.ca.request(
template="SmartcardLogon",
subject="CN=testuser"
)

# Get certificate details
cert_details = ad.ca.get(cert)

# Place certificate on hold (temporary revocation)
ad.ca.revoke_hold(cert)

# Remove hold (restore certificate)
ad.ca.revoke_hold_remove(cert)

# Permanently revoke certificate
ad.ca.revoke(cert, reason="key_compromise")
"""
return self._ca
#
# Disabling CA functionality until sssd-ci-container updated
#
# @property
# def ca(self) -> ADCertificateAuthority:
# """
# AD Certificate Authority management.
#
# Provides certificate operations:
#
# - Request certificates using templates
# - Request smartcard certificates with Enrollment Agent
# - Revoke certificates with configurable reasons
# - Manage certificate holds
# - Export certificates as PFX
# - Retrieve certificate and template details
#
# .. code-block:: python
# :caption: Example usage
#
# @pytest.mark.topology(KnownTopology.AD)
# def test_example(client: Client, ad: AD):
# # Request smartcard certificate
# cert, key, csr = ad.ca.request(
# template="SmartcardLogon",
# subject="CN=testuser"
# )
#
# # Get certificate details
# cert_details = ad.ca.get(cert)
#
# # Place certificate on hold (temporary revocation)
# ad.ca.revoke_hold(cert)
#
# # Remove hold (restore certificate)
# ad.ca.revoke_hold_remove(cert)
#
# # Permanently revoke certificate
# ad.ca.revoke(cert, reason="key_compromise")
# """
# return self._ca

@property
def naming_context(self) -> str:
Expand Down
Loading