Bug 1247595

Summary: install empty /etc/sysconfig/authconfig file
Product: Red Hat Enterprise Linux 6 Reporter: Dalibor Pospíšil <dapospis>
Component: authconfigAssignee: Tomas Mraz <tmraz>
Status: CLOSED NEXTRELEASE QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: low Docs Contact:
Priority: low    
Version: 6.7CC: ebenes, pkis, pvrabec
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1194698 Environment:
Last Closed: 2016-06-20 12:42:02 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Dalibor Pospíšil 2015-07-28 12:06:47 UTC 
+++ This bug was initially created as a clone of Bug #1194698 +++

Description of problem:
install empty /etc/sysconfig/authconfig file

authconfig --restorebackup will not delete the previously non-existent backup file and this will lead to wrong setup in /etc/nsswitch.conf

Version-Release number of selected component (if applicable):
authconfig-6.1.12-23.el6

How reproducible:

Steps to Reproduce:
1.authconfig --savebackup backup
2.authconfig --enableldap --enableforcelegacy --enablemkhomedir --disablecache --enableldapauth --update --ldapbasedn dc=my-domain,dc=com --ldapserver ldap://my-domain.com
3.authconfig --restorebackup backup
4.authconfig --enableldap --enableforcelegacy --enablemkhomedir --disablecache --enableldapauth --ldapbasedn dc=my-domain,dc=com --enableldaptls --ldapserver ldap://my-domain.com --update

Actual results:
cat /etc/nsswitch.conf | grep '^passwd'
passwd:     files


Expected results:
cat /etc/nsswitch.conf | grep '^passwd'
passwd:     files ldap
Comment 1 Peter Vrabec 2016-06-20 12:42:02 UTC 
When Red Hat shipped 6.8 on May 10, 2016 RHEL 6 entered Production Phase 2.
https://access.redhat.com/support/policy/updates/errata#Production_2_Phase
That means only "Critical and Important Security errata advisories (RHSAs) and Urgent Priority Bug Fix errata advisories (RHBAs) may be released". 

Additionally, this issue has been resolved in Red Hat Enterprise Linux 7 which is still in Production Phase 1. Please consider upgrading to RHEL 7 where less than critical bugs, hardware enablement and feature requests can be addressed. Please re-open this Bugzilla if it is production impacting and critical for the customer and provide a thorough business justification.