Bug 1445427

Summary: Auth MIQLDAP Display name field not updated when changed on LDAP server
Product: Red Hat CloudForms Management Engine Reporter: Matt Pusateri <mpusater>
Component: ApplianceAssignee: Gregg Tanzillo <gtanzill>
Status: CLOSED NOTABUG QA Contact: Matt Pusateri <mpusater>
Severity: high Docs Contact:
Priority: high    
Version: 5.8.0CC: abellott, cpelland, jhardy, obarenbo
Target Milestone: GA   
Target Release: cfme-future   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: auth:miqldap:ad:freeipa:openldap
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-06-01 21:16:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Embargoed:

Description Matt Pusateri 2017-04-25 16:08:24 UTC 
Description of problem:
* Auth - MIQLDAP - Openldap Display Name field not update when changed on LDAP server - Definitely happens when not "get groups from LDAP" . 


Version-Release number of selected component (if applicable):
5.8.0.11-beta2  Probably 5.6 and 5.7 as well

How reproducible:


Steps to Reproduce:
1. Configure MIQLDAP for LDAP/LDAPS
2. Check "Get Groups from LDAP due to this bug: https://bugzilla.redhat.com/show_bug.cgi?id=1445405
3. Log in with a user, check his user page in the UI.
4. Update the users display name on the ldap server
5. Uncheck "get groups from ldap" see bug above
6. Log out and back in, see that the users display name is not updated.

Actual results:
Display name not updated

Expected results:
Display name should update

Additional info:
Display name did get updated when using "get groups from server"
See also bugs: 
https://bugzilla.redhat.com/show_bug.cgi?id=1445405
https://bugzilla.redhat.com/show_bug.cgi?id=1445413
https://bugzilla.redhat.com/show_bug.cgi?id=1445421
Comment 2 Gregg Tanzillo 2017-06-01 21:16:17 UTC 
This is working as expected. When "get groups from LDAP" is not check the system only authenticates users. Meaning only the credentials are validated. It does not retrieve any objects from the directory nor does it add or update users.