#3938 sssctl config-check giving the wrong error message when there are only snippet files and no sssd. conf
Closed: Fixed 2 years ago by mzidek. Opened 3 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 8): Bug 1666307

Description of problem:
sssctl config-check giving the wrong error message when there are only snippet
files and no sssd. conf

Version-Release number of selected component (if applicable):
sssd-2.0.0-38.el8.x86_64

How reproducible:
Always

Steps to Reproduce:
1. Create snippet file under /etc/sssd/conf.d
2. change the ownership and permissions to root:root and 600
3. Start the sssd service
4. Check user lookup
5. Run # sssctl config-check

Actual results:
# sssctl config-check
File /etc/sssd/sssd.conf does not exist. SSSD will use default configuration
with files provider.
File ownership and permissions check failed. Expected root:root and 0600.


Expected results:
Here snippet file is added with proper ownership and permission and sssd does
not use the default configuration as files provider.

Additional info:

# ll /etc/sssd/conf.d/01.conf
-rw-------. 1 root root 381 Jan 15 08:15 /etc/sssd/conf.d/01.conf


# cat /etc/sssd/conf.d/01.conf
[sssd]
config_file_version = 2
domains = LDAP
services = nss, pam

[domain/LDAP]
ldap_search_base = dc=example,dc=com
debug_level = 9
id_provider = ldap
auth_provider = ldap
ldap_user_home_directory = /home/%u
ldap_uri = ldaps://server.example.com:636
ldap_tls_cacert = /etc/openldap/certs/cacert.pem
use_fully_qualified_names = True

[nss]

[pam]

# getent passwd testuser@LDAP
testuser@LDAP:*:14583101:14564100:testuser User::/bin/bash

Metadata Update from @jhrozek:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1666307

3 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.1

3 years ago

Metadata Update from @jhrozek:
- Issue assigned to mzidek
- Issue set to the milestone: SSSD 2.2 (was: SSSD 2.1)

3 years ago

Metadata Update from @jhrozek:
- Issue set to the milestone: SSSD 2.3 (was: SSSD 2.2)

2 years ago

Metadata Update from @mzidek:
- Issue close_status updated to: Fixed
- Issue status updated to: Closed (was: Open)

2 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4918

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata