Closed: Invalid None Opened 9 years ago by aigoshin.

i configured sssd to work in "id_provider = ldap" mode for several
domains. it works as expected.

i need to make idmap sid<->uid/gid using corresponding attributes
of this ldap (ldap_id_mapping = False).

i add sid for a user, sid comes from ldap server with other attributes.
getent passwd stops returning anything, in logs i see errors.

is it my misconfiguration or a bug?

log and sssd.conf are attached.

This might be a duplicate of #2172

Actually this is not a duplicate of #2172, but seems related. I suspect that the root cause might be similar.

Does it help you if you specify your domain SID manually using ldap_idmap_default_domain_sid in the config file?

if i specify ldap_idmap_default_domain_sid sssd does not start. i tried it before opening this bug.

Replying to [comment:6 aigoshin]:

if i specify ldap_idmap_default_domain_sid sssd does not start. i tried it before opening this bug.

Can you also paste the error you get in the logs trying to specify the ldap_idmap_default_domain_sid?

Replying to [comment:8 aigoshin]:

This problem looks like a https://fedorahosted.org/sssd/ticket/2172. Patches were pushed to upstream repo for that ticket. Does it solve your problem? Do you need a help with building rpms from git repo?

Because we believe this problem was solved already with another commit and at this point we're just waiting on a confirmation from the reporter, I'm moving the ticket to 1.11.5 in order to not block the 1.11.4 release.

aigoshin, could you test sssd from git branch sssd-1-11?

There was no response for 3 weeks. We believe the issue is fixed in 1.11.4. Please reopen if you are able to reproduce with 1.11.4 or later.

