document: modulemd
version: 2
data:
summary: RHEL IdM long term support client module
description: >-
RHEL IdM is an integrated solution to provide centrally managed Identity (users, hosts,
services), Authentication (SSO, 2FA), and Authorization (host access control,
SELinux user roles, services). The solution provides features for further integration
with Linux based clients (SUDO, automount) and integration with Active Directory
based infrastructures (Trusts).
This module stream supports only client side of RHEL IdM solution
license:
module: [MIT]
dependencies:
- buildrequires:
platform: [el8]
pki-core: [10.6]
httpd: [2.4]
389-ds: [1.4]
requires:
platform: [el8]
references:
community: https://www.freeipa.org/
documentation: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/linux_domain_identity_authentication_and_policy_guide/index
tracker: https://pagure.io/freeipa/issues
profiles:
common:
description: A default profile for RHEL IdM client
rpms:
- ipa-client
api:
rpms:
- ipa-client
- ipa-client-debuginfo
- ipa-client-common
- ipa-debuginfo
- ipa-debugsource
- ipa-common
- ipa-python-compat
- python3-ipaclient
- python3-ipalib
- python3-pyusb
- python3-qrcode
- python3-qrcode-core
- python3-jwcrypto
- python3-yubico
filter:
# Filter out server-related content
rpms:
- ipa-server
- ipa-server-trust-ad
- ipa-server-trust-ad-debuginfo
- ipa-server-dns
- ipa-server-common
- ipa-server-debuginfo
- python3-ipaserver
- softhsm
- softhsm-devel
- softhsm-debuginfo
- softhsm-debugsource
- python3-custodia
- custodia
- bind-dyndb-ldap
- bind-dyndb-ldap-debuginfo
- bind-dyndb-ldap-debugsource
- opendnssec
- opendnssec-debuginfo
- opendnssec-debugsource
- slapi-nis
- slapi-nis-debuginfo
- slapi-nis-debugsource
components:
rpms:
ipa:
rationale: Module API
ref: stream-idm-DL1
bind-dyndb-ldap:
rationale: Driver for BIND to store DNS information in LDAP
ref: stream-idm-DL1
slapi-nis:
rationale: Compatibility plugin to serve legacy clients
ref: stream-idm-DL1
# 389-ds-base is not available on i686
arches: [ aarch64 x86_64 s390x ppc64le ]
custodia:
rationale: Remote access to secrets and credentials in IdM topology
ref: stream-idm-DL1
buildorder: 2
python-jwcrypto:
rationale: JSON Web Cryptographic Tokens used by Custodia
ref: stream-idm-DL1
buildorder: 1
python-qrcode:
rationale: QR code generator for IdM two-factor authentication
ref: stream-idm-DL1
python-yubico:
rationale: Support for Yubikey-based tokens for IdM two-factor authentication
ref: stream-idm-DL1
buildorder: 2
pyusb:
rationale: Python USB support to access USB tokens for IdM two-factor authentication
ref: stream-idm-DL1
buildorder: 1
softhsm:
rationale: Software version of a PKCS#11 Hardware Security Module
ref: stream-idm-DL1
opendnssec:
rationale: An implementation of DNSSEC support for IdM integrated DNS server
ref: stream-idm-DL1