#1892 In IPA AD trust setup, the sssd logs throws 'sysdb_search_user_by_name failed' error when AD user tries to login via ipa client.
Closed: Fixed None Opened 6 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 6): Bug 954342

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

Description of problem:In IPA AD trust setup, the sssd logs throws
'sysdb_search_user_by_name failed' error when AD user tries to login via ipa
client.

Version-Release number of selected component (if applicable):
ipa-client-3.0.0-26.el6_4.2.x86_64
sssd-1.9.2-82.4.el6_4.x86_64


How reproducible:
always

Steps to Reproduce:
1. When AD user tries login via IPA client as shown below :

# kinit aduser1@mars.corp.com

# ssh -K -l aduser1@MARS.CORP.COM  dhcp209-174.example.com

2. The user able to login without any issue. However sssd logs shows following
errors.

------------------------------------------------------------------
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[sysdb_search_user_by_name] (0x0400): No such entry
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[sss_selinux_extract_user] (0x0040): sysdb_search_user_by_name failed.
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[ipa_selinux_handler] (0x0040): Cannot create op context
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Backend returned: (3, 4, <NULL>) [Internal
Error (System error)]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Sending result [0][mars.corp.com]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Sent result [0][mars.corp.com]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]] [sbus_dispatch]
(0x4000): dbus conn: 1AC8D30
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]] [sbus_dispatch]
(0x4000): Dispatching.
------------------------------------------------------------------


Actual results:

sssd logs throws 'sysdb_search_user_by_name failed' errors.

Expected results:

sssd logs should not throws 'sysdb_search_user_by_name failed' errors.

Fields changed

blockedby: =>
blocking: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
owner: somebody => sbose
patch: 0 => 1
review: True => 0
selected: =>
status: new => assigned
testsupdated: => 0

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10 beta

resolution: => fixed
status: assigned => closed

We still need a sssd-1-9 backport.

Fields changed

changelog: => N/A, just a bugfix

Metadata Update from @jhrozek:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.10 beta

2 years ago

Login to comment on this ticket.

Metadata