Issue #3931: proxy provider is not working with enumerate=true when trying to fetch all groups - sssd

SSSD / sssd

#3931 proxy provider is not working with enumerate=true when trying to fetch all groups

Closed: Fixed 5 years ago by jhrozek. Opened 6 years ago by atikhonov.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 8): Bug 1665867

Description of problem:
The proxy provider is not working with enumerate=true when trying to fetch all
groups

Version-Release number of selected component (if applicable):
sssd-2.0.0-36.el8.x86_64

How reproducible:
always


Steps to Reproduce:
1. Configure sssd with a proxy provider
2. Fetch all groups using '# getent group'


Actual results:
Fetching all groups take too much time(approx 80 to 90 seconds)

Expected results:
Should not take that much time to fetch all groups.

Additional info:
# cat /etc/sssd/sssd.conf
[sssd]
config_file_version = 2
domains = proxy, ldap
sbus_timeout = 30
services = nss, pam

[domain/proxy]
auth_provider = proxy
cache_credentials = True
enumerate = TRUE
id_provider = proxy
debug_level = 0xFFF0
proxy_lib_name = ldap
proxy_pam_target = sssdproxyldap
filter_users = puser10
use_fully_qualified_names = True

[domain/ldap]
id_provider = ldap
auth_provider = ldap
cache_credentials = FALSE
ldap_search_base = dc=bos,dc=redhat,dc=com
chpass_provider = ldap
ldap_id_use_start_tls = True
debug_level = 0xFFF0
min_id  = 1000
enumerate = TRUE
ldap_uri = ldaps://server.example.com:636
ldap_tls_cacert = /etc/openldap/certs/cacert2.pem

[nss]
filter_groups = root
filter_users = root
debug_level = 9

[pam]

Metadata Update from @atikhonov:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1665867

6 years ago

Metadata Update from @atikhonov:
- Issue assigned to atikhonov

6 years ago

atikhonov commented 6 years ago

PR: https://github.com/SSSD/sssd/pull/737

Metadata Update from @atikhonov:
- Issue tagged with: bug

6 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.1

6 years ago

Metadata Update from @jhrozek:
- Issue tagged with: PR

6 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.2 (was: SSSD 2.1)

6 years ago

jhrozek commented 5 years ago

Commit cd1538b fixes this issue

jhrozek commented 5 years ago

pbrezina commented 4 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4911

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata

Assignee

atikhonov

Tags

Blocking

None

Depending on

None

Priority

None

Milestone

SSSD 2.2

type

None

component

None

version

None

selected

None

testsupdated

None

patch

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1665867

design_review

None

review

None

changelog

None

keywords

None

coverity

None

mark

None

blocking

None

design

None

sensitive

None

blockedby

None

feature_milestone

None

SSSD / sssd

Source Code

Documentation

#3931 proxy provider is not working with enumerate=true when trying to fetch all groups Closed: Fixed 5 years ago by jhrozek. Opened 6 years ago by atikhonov.

Metadata

bug PR

#3931 proxy provider is not working with enumerate=true when trying to fetch all groups

Closed: Fixed 5 years ago by jhrozek. Opened 6 years ago by atikhonov.