Issue #316: Native LDAP Backend - Group Memberships Not Returned - sssd

SSSD / sssd

#316 Native LDAP Backend - Group Memberships Not Returned

Closed: Fixed None Opened 14 years ago by jgalipea.

Description[[BR]]
With native ldap backend, group memberships are not found.[[BR]]

Configuration[[BR]]

[sssd]
config_file_version = 2
domains = LDAP
sbus_timeout = 30
services = nss, pam

[nss]
filter_groups = root
filter_users = root

[pam]

[domain/LDAP]
auth_provider = ldap
enumerate = FALSE
id_provider = ldap
ldap_group_search_base = ou=Groups,dc=example,dc=com
ldap_tls_reqcert = never
ldap_uri = ldap://host.example.com:389
ldap_user_search_base = ou=People,dc=example,dc=com
min_id = 1000

LDAP users and groups[[BR]]

dn: uid=user1,ou=People,dc=example,dc=com
cn: User1
uid: user1
uidNumber: 3000
gidNumber: 3000
homeDirectory: /export/user1
objectClass: top
objectClass: posixAccount

dn: uid=user2,ou=People,dc=example,dc=com
cn: User2
uid: user2
uidNumber: 3001
gidNumber: 3001
homeDirectory: /export/user2
objectClass: top
objectClass: posixAccount

dn: cn=child,ou=Groups,dc=example,dc=com
gidNumber: 4001
objectClass: top
objectClass: groupofuniquenames
objectClass: posixgroup
cn: child
memberUid: user2

dn: cn=parent,ou=Groups,dc=example,dc=com
gidNumber: 4000
objectClass: top
objectClass: groupofuniquenames
objectClass: posixgroup
cn: parent
memberUid: child
memberUid: user1

Steps to Reproduce[[BR]]
1. install SSSD and use above configuration[[BR]]

getent -s sss passwd user1 ; getent -s sss passwd user2 (cache uses first)[[BR]]

user1::3000:3000::/export/user1:
user2::3001:3001::/export/user2:
getent -s sss group parent ; getent -s sss group child[[BR]][[BR]]

ACTUAL:[[BR]]

parent:*:4000:
child:*:4001:

EXPECTED:[[BR]]

parent:*:4000:user1
child:*:4001:user2

id -G user1[[BR]]

ACTUAL:[[BR]]
3000[[BR]]

EXPECTED:[[BR]]
3000 4000[[BR]]

id -G user2[[BR]]
ACTUAL:[[BR]]
3001[[BR]]

EXPECTED:[[BR]]
3001 4001[[BR]]

sgallagh commented 14 years ago

Fields changed

component: SSSD => NSS
milestone: NEEDS_TRIAGE => SSSD 1.0
owner: somebody => simo
priority: major => blocker
version: 0.99.0 => master

simo commented 14 years ago

Fixed in cdfea28

component: NSS => SysDB
fixedin: => 1.0.0
resolution: => fixed
status: new => closed

dpal commented 12 years ago

Fields changed

rhbz: => 0

Metadata Update from @jgalipea:
- Issue assigned to simo
- Issue set to the milestone: SSSD 1.0

7 years ago

pbrezina commented 3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/1358

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata

Assignee

simo

Tags

None

Blocking

None

Depending on

None

Priority

blocker

Milestone

SSSD 1.0

type

defect

component

SysDB

version

master

selected

None

testsupdated

patch

None

rhbz

design_review

None

review

None

changelog

None

keywords

None

coverity

None

mark

None

blocking

None

design

None

sensitive

None

blockedby

None

feature_milestone

None

SSSD / sssd

Source Code

Documentation

#316 Native LDAP Backend - Group Memberships Not Returned Closed: Fixed None Opened 14 years ago by jgalipea.

Metadata

#316 Native LDAP Backend - Group Memberships Not Returned

Closed: Fixed None Opened 14 years ago by jgalipea.