Issue #187: 2 LDAP Back ends, one proxy and one native - users from the second domain are not return - errors that users are not in ID range - sssd

SSSD / sssd

#187 2 LDAP Back ends, one proxy and one native - users from the second domain are not return - errors that users are not in ID range

Closed: Invalid None Opened 15 years ago by jgalipea.

Configuration[[BR]]

[services]
description =  Local Service Configuration
activeServices = nss, pam
reconnection_retries = 3

[services/nss]
description = NSS Responder Configuration
filterGroups = root
filterUsers = root
debug-level = 4

[services/dp]
description = Data Provider Configuration
debug-level = 4

[services/pam]
description = PAM Responder Configuration

[services/monitor]
description = Service Monitor Configuration

[domains]
description = Domains served by SSSD
domains = EXAMPLE.COM,BOS.REDHAT.COM

[domains/EXAMPLE.COM]
description = Request to our EXAMPLE.COM LDAP server
enumerate = TRUE
minId = 1000
maxId = 1010
cache-credentials = FALSE

provider = ldap
ldapUri = ldap://jennyv4.bos.redhat.com:389
userSearchBase = ou=people,dc=example,dc=com
groupSearchBase = ou=groups,dc=example,dc=com

[domains/BOS.REDHAT.COM]
description = Request to our BOS.REDHAT.COM LDAP server
enumerate = TRUE
minId = 2000
maxId = 2010
cache-credentials = FALSE

provider = proxy
libName = ldap
libPath = libnss_ldap.so.2

Debug[[BR]]

sssd[be[EXAMPLE.COM]]] [acctinfo_callback] (4): Request processed. Returned 0,0,Success
[sssd[be[BOS.REDHAT.COM]]] [sysdb_search_entry_done] (6): Error: Entry not Found!
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (2): Supplied uid [1001] is not in the allowed range [2000-2010].
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [sysdb_store_user_add_done] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [enum_users_process] (2): Failed to store user. Ignoring.
[sssd[be[BOS.REDHAT.COM]]] [sysdb_search_entry_done] (6): Error: Entry not Found!
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (2): Supplied uid [1002] is not in the allowed range [2000-2010].
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [sysdb_store_user_add_done] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [enum_users_process] (2): Failed to store user. Ignoring.
[sssd[be[BOS.REDHAT.COM]]] [sysdb_search_entry_done] (6): Error: Entry not Found!
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (2): Supplied uid [999] is not in the allowed range [2000-2010].
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [sysdb_store_user_add_done] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [enum_users_process] (2): Failed to store user. Ignoring.
[sssd[be[BOS.REDHAT.COM]]] [sysdb_search_entry_done] (6): Error: Entry not Found!
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (2): Supplied uid [1011] is not in the allowed range [2000-2010].
[sssd[be[BOS.REDHAT.COM]]] [sysdb_add_user_send] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [sysdb_store_user_add_done] (6): Error: 34 (Numerical result out of range)
[sssd[be[BOS.REDHAT.COM]]] [enum_users_process] (2): Failed to store user. Ignoring.
[sssd[be[BOS.REDHAT.COM]]] [ldb] (9): commit ldb transaction (nesting: 0)

jgalipea commented 15 years ago

Fields changed

summary: 2 native LDAP Back ends, users from the second domain are not return - errors that users are not in ID range => 2 LDAP Back ends, one proxy and one native - users from the second domain are not return - errors that users are not in ID range

sgallagh commented 15 years ago

Fields changed

owner: somebody => sgallagh
status: new => assigned

sgallagh commented 15 years ago

Missing configuration options from ldap.conf:

uri ldap://jennyv4.bos.redhat.com:11329
base dc=bos,dc=redhat,dc=com
ssl no

However, this configuration works perfectly and we now suspect a bug in the automated tests not putting the correct configuration in place. Closing this bug.

resolution: => invalid
status: assigned => closed

dpal commented 13 years ago

Fields changed

rhbz: => 0

Metadata Update from @jgalipea:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 0.6.0

8 years ago

pbrezina commented 5 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/1229

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata

Assignee

sgallagh

Tags

None

Blocking

None

Depending on

None

Priority

blocker

Milestone

SSSD 0.6.0

type

defect

component

SSSD

version

master

selected

None

testsupdated

patch

None

rhbz

design_review

None

review

None

changelog

None

keywords

None

coverity

None

mark

None

blocking

None

design

None

sensitive

None

blockedby

None

feature_milestone

None

SSSD / sssd

Source Code

Documentation

#187 2 LDAP Back ends, one proxy and one native - users from the second domain are not return - errors that users are not in ID range Closed: Invalid None Opened 15 years ago by jgalipea.

Metadata

#187 2 LDAP Back ends, one proxy and one native - users from the second domain are not return - errors that users are not in ID range

Closed: Invalid None Opened 15 years ago by jgalipea.