Bug 1985037

Summary: Clean - allow obfuscation of Active Directory user names.
Product: Red Hat Enterprise Linux 8 Reporter: Stephen Hobbs <shobbs>
Component: sosAssignee: Pavel Moravec <pmoravec>
Status: CLOSED ERRATA QA Contact: Miroslav HradĂ­lek <mhradile>
Severity: high Docs Contact:
Priority: unspecified    
Version: 8.5CC: agk, bmr, mhradile, plambri, sbradley, theute
Target Milestone: betaKeywords: OtherQA, Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Linux   
Whiteboard:
Fixed In Version: sos-4.1-5.el8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-11-09 19:36:31 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Stephen Hobbs 2021-07-22 17:12:37 UTC 
Description of problem:
sos clean does not add users from Active Directory to the private map for obfuscation.

Version-Release number of selected component (if applicable):
4.1

Expected results: Any user who has accessed the system should be obfuscated.


Additional info:  This is resolved by https://github.com/sosreport/sos/pull/2619

My customer has tested this and AD users as well as local users were obfuscated. 

My customer would like this included in RHEL 8.5.
Comment 1 Pavel Moravec 2021-07-29 20:04:56 UTC 
This is far too late to add to RHEL8.5. But it will be included in 8.6 for sure.

Would you be able to test a candidate build within few months / once there will be a 8.6 candidate RPM?
Comment 2 Stephen Hobbs 2021-07-29 20:35:10 UTC 
This is a very important feature for my customer.  They have a lot of security requirements around what data is sent outside the company network.  If there is any way this could be included prior to 8.6 that would be great.  I understand this might not be ready for 8.5 GA, but is there any way it could get included prior to 8.6?

My customer would be willing to test any builds available.

Thanks, 
Stephen
Comment 3 Pavel Moravec 2021-08-10 16:04:47 UTC 
(In reply to Stephen Hobbs from comment #2)
> This is a very important feature for my customer.  They have a lot of
> security requirements around what data is sent outside the company network. 
> If there is any way this could be included prior to 8.6 that would be great.
> I understand this might not be ready for 8.5 GA, but is there any way it
> could get included prior to 8.6?
> 
> My customer would be willing to test any builds available.
> 
> Thanks, 
> Stephen

We will add it to 8.5.0 / backport the #2619 PR to 8.5.0 .

We will welcome if you can test the candidate build (available within a week) on a real environment - we will mock it only.
Comment 4 Stephen Hobbs 2021-08-10 17:18:58 UTC 
I can have the build tested.  Please let me know when it is ready.

Thank you, 
Stephen Hobbs
Comment 10 errata-xmlrpc 2021-11-09 19:36:31 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (sos bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2021:4388