Bug 1090176
Summary: | regression in reassemble memberuid list | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Noriko Hosoi <nhosoi> |
Component: | 389-ds-base | Assignee: | Noriko Hosoi <nhosoi> |
Status: | CLOSED ERRATA | QA Contact: | Sankar Ramalingam <sramling> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.4 | CC: | nkinder, rmeggins, vashirov |
Target Milestone: | rc | Keywords: | Regression |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | 389-ds-base-1.2.11.15-34.el6 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-10-14 07:54:55 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Noriko Hosoi
2014-04-22 20:23:11 UTC
$ rpm -qa | grep 389-ds-base 389-ds-base-1.2.11.15-41.el6.x86_64 389-ds-base-libs-1.2.11.15-41.el6.x86_64 Add user and group entry with POSIX attributes to AD: $ ldapadd -x -D "cn=Administrator,cn=users,dc=adrelm,dc=com" -w Secret123 -H ldap://win2k8.adrelm.com << EOF dn: CN=usr0,ou=adpasssync,dc=adrelm,dc=com objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user objectClass: posixAccount uidNumber: 111 gidNumber: 111 cn: usr0 sn: usr0 uid: usr0 givenName: usr0 distinguishedName: CN=usr0,ou=adpasssync,dc=adrelm,dc=com displayName: usr0 unixHomeDirectory: /home/usr0 homeDirectory: /home/usr0 loginShell: /bin/bash sAMAccountName: usr0 userPrincipalName: usr0@dc=adrelm,dc=com dn: CN=grp0,ou=adpasssync,dc=adrelm,dc=com objectClass: top objectClass: Group objectClass: posixGroup cn: grp0 gidNumber: 222 distinguishedName: CN=grp0,ou=adpasssync,dc=adrelm,dc=com name: grp0 sAMAccountName: grp0 groupType: 2 objectCategory: CN=Group,CN=Schema,CN=Configuration,dc=adrelm,dc=com EOF adding new entry "CN=usr0,ou=adpasssync,dc=adrelm,dc=com" adding new entry "CN=grp0,ou=adpasssync,dc=adrelm,dc=com" Assign user a group membership in AD: $ ldapmodify -x -D "cn=Administrator,cn=users,dc=adrelm,dc=com" -w Secret123 -H ldap://win2k8.adrelm.com << EOF dn: CN=grp0,OU=adpasssync,DC=adrelm,DC=com changetype: modify add: member member: CN=usr0,OU=adpasssync,DC=adrelm,DC=com EOF modifying entry "CN=grp0,OU=adpasssync,DC=adrelm,DC=com" Refresh replica to sync changes to DS: $ ldapmodify -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x << EOF dn: cn=WinPassSync,cn=replica,cn=dc\3Dpasssync\,dc\3Dcom,cn=mapping tree,cn=config changetype: modify add: nsds5BeginReplicaRefresh nsds5BeginReplicaRefresh: start EOF modifying entry "cn=WinPassSync,cn=replica,cn=dc\3Dpasssync\,dc\3Dcom,cn=mapping tree,cn=config" Check it is synced to DS and memberuid value is added in corresponding group on DS: $ ldapsearch -LLL -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x -b cn=grp0,ou=dswinsync,dc=passsync,dc=com "memberUid" dn: cn=grp0,ou=dswinsync,dc=passsync,dc=com memberUid: usr0 Delete memberuid attribute on DS: $ ldapmodify -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x << EOF dn: cn=grp0,ou=dswinsync,dc=passsync,dc=com changetype: modify delete: memberUid EOF modifying entry "cn=grp0,ou=dswinsync,dc=passsync,dc=com " Check that is was deleted: $ ldapsearch -LLL -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x -b cn=grp0,ou=dswinsync,dc=passsync,dc=com "memberUid" dn: cn=grp0,ou=dswinsync,dc=passsync,dc=com Run fix_memberuid task: $ ldapmodify -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x -a << EOF dn: cn=memuidtask,cn=memberuid task,cn=tasks,cn=config cn: memuidtask objectClass: extensibleObject objectClass: top EOF adding new entry "cn=memuidtask,cn=memberuid task,cn=tasks,cn=config" Check that memberuid was regenerated: $ ldapsearch -LLL -H ldap://localhost:1189 -D "cn=Directory Manager" -w Secret123 -x -b cn=grp0,ou=dswinsync,dc=passsync,dc=com "memberUid" dn: cn=grp0,ou=dswinsync,dc=passsync,dc=com memberUid: usr0 memberuid is regenerated, hence marking this bug as VERIFIED. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-1385.html |