Bug 1205768

Summary: puppet-keystone support the ldap user_enabled_invert parameter
Product: Red Hat OpenStack Reporter: Rich Megginson <rmeggins>
Component: openstack-puppet-modulesAssignee: Ivan Chavero <ichavero>
Status: CLOSED ERRATA QA Contact: Mike Abrams <mabrams>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 6.0 (Juno)CC: aberezin, ajeain, dnavale, ichavero, jguiditt, lbezdick, nkinder, scohen, yeylon
Target Milestone: z3Keywords: ZStream
Target Release: 6.0 (Juno)   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: openstack-packstack-2014.2-0.22.dev1468.gd049ea9.el7ost Doc Type: Enhancement
Doc Text:
Feature: Add the ability to set the Keystone ldap backend user_enabled_invert parameter. Reason: This has been supported by Keystone since Icehouse. This is needed for integration of Keystone with other Red Hat products such as Identity Management and Red Hat Directory Server. Result: Operation can install Keystone and configure with LDAP support and use Identity Management and Red Hat Directory Server as Keystone LDAP identity backends, with the ability to enable and disable users in LDAP and have them show up in Keystone as enabled or disabled.
 Story Points: ---
Clone Of: 1205757 Environment:
Last Closed: 2015-05-05 13:29:20 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1205757, 1205772    
Bug Blocks: 1172310, 1205781, 1205783    

Description Rich Megginson 2015-03-25 15:08:52 UTC 
+++ This bug was initially created as a clone of Bug #1205757 +++

Description of problem:
keystone::ldap has a user_enabled_invert parameter - this is needed to support using keystone with 389/ipa/rhds/idm

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:

--- Additional comment from Rich Megginson on 2015-03-25 11:08:00 EDT ---

I don't know if upstream is going to want to have this backported to juno since kilo is coming soon - if they do not, we will have to carry this patch ourselves . . .
Comment 3 Rich Megginson 2015-03-25 15:10:34 UTC 
I would like to get this into OSP 6 ASAP - A3?
Comment 4 Rich Megginson 2015-03-27 01:33:34 UTC 
This has merged upstream in juno branch
Comment 6 Rich Megginson 2015-04-06 19:34:11 UTC 
How soon can we get this updated?
Comment 10 Mike Abrams 2015-04-21 06:36:42 UTC 
supported in config.
Comment 14 errata-xmlrpc 2015-05-05 13:29:20 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-0935.html