Bug 2071804

Summary: Tlog role - Enabling session recording configuration does not work due to RHEL9 SSSD files provider default
Product: Red Hat Enterprise Linux 9 Reporter: jstephen
Component: rhel-system-rolesAssignee: Rich Megginson <rmeggins>
Status: CLOSED ERRATA QA Contact: Jakub Haruda <jharuda>
Severity: high Docs Contact: Gabi Fialová <gfialova>
Priority: urgent    
Version: 9.0CC: aboscatt, briasmit, djez, gfialova, jharuda, nhosoi, pkettman, pvlasin, spetrosi, spoore
Target Milestone: betaKeywords: ZStream
Target Release: 9.1Flags: pkettman: needinfo+
pkettman: needinfo+
Hardware: All   
OS: Linux   
Whiteboard: role:tlog
Fixed In Version: rhel-system-roles-1.18.0-1.el9 Doc Type: Bug Fix
Doc Text:
.The `tlog` RHEL System Roles is now correctly overlaid by SSSD Previously, the `tlog` RHEL System Role relied on the System Security Services Daemon (SSSD) files provider and on enabled `authselect` option `with-files-domain` to set up correct `passwd` entries in the `nsswitch.conf` file. In RHEL 9.0, SSSD did not implicitly enable the files provider by default, and consequently the `tlog-rec-session` shell overlay by SSSD did not work. With this fix, the `tlog` role now updates the `nsswitch.conf` to ensure `tlog-rec-session` is correctly overlaid by SSSD.
 Story Points: ---
Clone Of:
: 2072749 2075545 (view as bug list) Environment:
Last Closed: 2022-11-15 10:23:22 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2072749, 2075545    

Comment 1 Andre Boscatto 2022-04-06 19:50:39 UTC 
PO ack granted
Comment 2 Andre Boscatto 2022-04-06 20:14:11 UTC 
Wrong BZ, removing zstream and PO ack, sorry about the confusion
Comment 19 Fedora Update System 2022-05-11 01:18:44 UTC 
FEDORA-2022-2da3a47337 has been pushed to the Fedora 36 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 20 Fedora Update System 2022-05-11 01:24:53 UTC 
FEDORA-2022-d6e6c7c37c has been pushed to the Fedora 35 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 21 Fedora Update System 2022-05-11 01:35:14 UTC 
FEDORA-2022-671a5d63e6 has been pushed to the Fedora 34 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 30 errata-xmlrpc 2022-11-15 10:23:22 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2022:8117