Bug 1371977
Summary: | resolving IPA nested user groups is broken in 1.14 | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Jakub Hrozek <jhrozek> |
Component: | sssd | Assignee: | Sumit Bose <sbose> |
Status: | CLOSED ERRATA | QA Contact: | Steeve Goveas <sgoveas> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 7.3 | CC: | grajaiya, jhrozek, ksiddiqu, lslebodn, mkolaja, mkosek, mzidek, pbrezina, sumenon |
Target Milestone: | rc | Keywords: | Regression |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | sssd-1.14.0-34.el7 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-11-04 07:21:04 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Jakub Hrozek
2016-08-31 15:16:59 UTC
To reproduce, set up a hierarchy like this: $ ipa group-show group20 Group name: group20 GID: 935600011 Member groups: group10, group11 Indirect Member users: user1 $ ipa group-show group10 Group name: group10 GID: 935600008 Member users: user1 Member of groups: group20 $ ipa group-show group11 Group name: group11 GID: 935600009 Member users: user1 Member of groups: group20 Before the patch, group20 isn't resolved, after the patch it is. master: 5bd3bef4a655fdfacd2f5df8a2343fe7bc68a771 id command displays all the groups. [root@master sssd]# id user1 uid=539000012(user1) gid=539000012(user1) groups=539000012(user1),539000016(group20),539000018(group11),539000017(group10) Verified on RHEL7.3 using sssd-1.14.0-42.el7.x86_64 [root@master sssd]# id user1 uid=539000012(user1) gid=539000012(user1) groups=539000012(user1),539000016(group20),539000018(group11),539000017(group10) [root@client ~]# id user1 uid=539000012(user1) gid=539000012(user1) groups=539000012(user1),539000016(group20),539000017(group10),539000018(group11) Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHEA-2016-2476.html |