#2031 sssd fails instead of skipping when a sudo ldap filter returns entries with multiple CNs
Closed: Fixed None Opened 6 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 6): Bug 988525

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

Description of problem:
If sssd is configured to be used as sudo provider using LDAP sources and the
entries have multiple CNs then it fails instead of skipping these entries which
result that all the entries from that provider are ignored

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. Configure sssd as sudoers provider
2. Use at least one entry in the sudoers LDAP entries with multiple CNs

Actual results:
All entries from this sssd domain are ignored (domain fails)

Expected results:
Either allow multiple CNs or at least skip only the affected entries

Additional info:

Fields changed

blockedby: =>
blocking: =>
changelog: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
owner: somebody => pbrezina
review: True => 0
selected: =>
status: new => assigned
testsupdated: => 0

Fields changed

patch: 0 => 1

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10.2

resolution: => fixed
status: assigned => closed

Fields changed

changelog: => N/A, just a bugfix

Metadata Update from @jhrozek:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.10.2

2 years ago

Login to comment on this ticket.