#1892 In IPA AD trust setup, the sssd logs throws 'sysdb_search_user_by_name failed' error when AD user tries to login via ipa client.
Closed: Fixed None Opened 7 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 6): Bug 954342

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

Description of problem:In IPA AD trust setup, the sssd logs throws
'sysdb_search_user_by_name failed' error when AD user tries to login via ipa
client.

Version-Release number of selected component (if applicable):
ipa-client-3.0.0-26.el6_4.2.x86_64
sssd-1.9.2-82.4.el6_4.x86_64


How reproducible:
always

Steps to Reproduce:
1. When AD user tries login via IPA client as shown below :

# kinit aduser1@mars.corp.com

# ssh -K -l aduser1@MARS.CORP.COM  dhcp209-174.example.com

2. The user able to login without any issue. However sssd logs shows following
errors.

------------------------------------------------------------------
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[sysdb_search_user_by_name] (0x0400): No such entry
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[sss_selinux_extract_user] (0x0040): sysdb_search_user_by_name failed.
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[ipa_selinux_handler] (0x0040): Cannot create op context
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Backend returned: (3, 4, <NULL>) [Internal
Error (System error)]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Sending result [0][mars.corp.com]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]]
[be_pam_handler_callback] (0x0100): Sent result [0][mars.corp.com]
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]] [sbus_dispatch]
(0x4000): dbus conn: 1AC8D30
(Mon Apr 22 16:02:37 2013) [sssd[be[gsslab.pnq.redhat.com]]] [sbus_dispatch]
(0x4000): Dispatching.
------------------------------------------------------------------


Actual results:

sssd logs throws 'sysdb_search_user_by_name failed' errors.

Expected results:

sssd logs should not throws 'sysdb_search_user_by_name failed' errors.

Fields changed

blockedby: =>
blocking: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
owner: somebody => sbose
patch: 0 => 1
review: True => 0
selected: =>
status: new => assigned
testsupdated: => 0

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10 beta

resolution: => fixed
status: assigned => closed

We still need a sssd-1-9 backport.

Fields changed

changelog: => N/A, just a bugfix

Metadata Update from @jhrozek:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.10 beta

3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/2934

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata