Bug 2134530

Summary: [ansible-freeipa] Do not require 'enable-sid' for 'add-sids' and 'netbios-name'.
Product: Red Hat Enterprise Linux 8 Reporter: Rafael Jeffman <rjeffman>
Component: ansible-freeipaAssignee: Rafael Jeffman <rjeffman>
Status: CLOSED ERRATA QA Contact: Varun Mylaraiah <mvarun>
Severity: high Docs Contact:
Priority: unspecified    
Version: 8.7CC: ipa-qe, mvarun, tscherf, twoerner
Target Milestone: rcKeywords: Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ansible-freeipa-1.9.0-1.el8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 2134505
: 2135775 (view as bug list) Environment:
Last Closed: 2023-05-16 08:15:59 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2134505    
Bug Blocks: 2135775    

Description Rafael Jeffman 2022-10-13 14:46:16 UTC 
+++ This bug was initially created as a clone of Bug #2134505 +++

When using plugin 'ipaconfig', parameters 'add-sids' and 'netbios-name' can only be used if 'enable-sid: yes' is used.

It would provide a better experience if the parameters can be used without having to set 'enable-sid', and the plugin simply fails if SID generation is not enabled and 'enable-sid' is not set to 'yes'.
Comment 3 Rafael Jeffman 2022-10-13 16:35:37 UTC 
Upstream PR: https://github.com/freeipa/ansible-freeipa/pull/961
Comment 9 Varun Mylaraiah 2022-12-19 12:20:40 UTC 
Verified
ansible-2.9.27-1.el8ae.noarch
ansible-freeipa-1.9.0-1.el8.noarch

Passed	ansible_freeipa_tests/config/test_config.py::TestConfigInvalid::test_update_netbios_name_without_enable_sid

DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 PLAYBOOK: config_module.yml ****************************************************
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 1 plays in config_module.yml
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 PLAY [Playbook to ensure able to update netbios_name without enable_sid.] ******
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 TASK [Gathering Facts] *********************************************************
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 task path: /root/config_module.yml:2
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 ok: [master.ipadomain.test]
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 META: ran handlers
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 TASK [ipaconfig] ***************************************************************
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 task path: /root/config_module.yml:6
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 changed: [master.ipadomain.test] => {"changed": true, "config": {}}
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 META: ran handlers
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 META: ran handlers
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 PLAY RECAP *********************************************************************
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 master.ipadomain.test      : ok=2    changed=1    unreachable=0    failed=0    skipped=0    rescued=0    ignored=0   
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:563 
DEBUG    paramiko.transport:channel.py:1212 [chan 58] EOF received (58)
DEBUG    paramiko.transport:channel.py:1212 [chan 58] EOF sent (58)
DEBUG    pytest_multihost.host.Host.ansible.cmd58:transport.py:217 Exit code: 0
DEBUG    paramiko.transport:channel.py:1212 [chan 208] Max packet in: 32768 bytes
DEBUG    paramiko.transport:channel.py:1212 [chan 208] Max packet out: 32768 bytes
DEBUG    paramiko.transport:transport.py:1819 Secsh channel 208 opened.
INFO     pytest_multihost.host.Host.master.ParamikoTransport:transport.py:318 RUN ['kinit', 'admin']
DEBUG    pytest_multihost.host.Host.master.cmd209:transport.py:519 RUN ['kinit', 'admin']
DEBUG    paramiko.transport:channel.py:1212 [chan 208] Sesch channel 208 request ok
DEBUG    pytest_multihost.host.Host.master.cmd209:transport.py:563 -bash: line 1: cd: /root/multihost_tests: No such file or directory
DEBUG    pytest_multihost.host.Host.master.cmd209:transport.py:563 -bash: line 2: /root/multihost_tests/env.sh: No such file or directory
DEBUG    pytest_multihost.host.Host.master.cmd209:transport.py:563 Password for admin: 
DEBUG    paramiko.transport:channel.py:1212 [chan 208] EOF received (208)
DEBUG    paramiko.transport:channel.py:1212 [chan 208] EOF sent (208)
DEBUG    pytest_multihost.host.Host.master.cmd209:transport.py:217 Exit code: 0
DEBUG    paramiko.transport:channel.py:1212 [chan 209] Max packet in: 32768 bytes
DEBUG    paramiko.transport:channel.py:1212 [chan 209] Max packet out: 32768 bytes
DEBUG    paramiko.transport:transport.py:1819 Secsh channel 209 opened.
INFO     pytest_multihost.host.Host.master.ParamikoTransport:transport.py:318 RUN ['ipa', 'trustconfig-show']
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:519 RUN ['ipa', 'trustconfig-show']
DEBUG    paramiko.transport:channel.py:1212 [chan 209] Sesch channel 209 request ok
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563 -bash: line 1: cd: /root/multihost_tests: No such file or directory
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563 -bash: line 2: /root/multihost_tests/env.sh: No such file or directory
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563   Domain: ipadomain.test
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563   Security Identifier: S-1-5-21-1879453920-727115722-1237549136
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563   NetBIOS name: NEWTESTNETBIOS
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563   Domain GUID: 6adf83f5-bb81-41ce-84d8-c4f2ca87b7ac
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:563   Fallback primary group: Default SMB Group
DEBUG    paramiko.transport:channel.py:1212 [chan 209] EOF received (209)
DEBUG    paramiko.transport:channel.py:1212 [chan 209] EOF sent (209)
DEBUG    pytest_multihost.host.Host.master.cmd210:transport.py:217 Exit code: 0
DEBUG    paramiko.transport:channel.py:1212 [chan 210] Max packet in: 32768 bytes
DEBUG    paramiko.transport:channel.py:1212 [chan 210] Max packet out: 32768 bytes
DEBUG    paramiko.transport:transport.py:1819 Secsh channel 210 opened.
INFO     pytest_multihost.host.Host.master.ParamikoTransport:transport.py:318 RUN ['kdestroy', '-A']
DEBUG    pytest_multihost.host.Host.master.cmd211:transport.py:519 RUN ['kdestroy', '-A']
DEBUG    paramiko.transport:channel.py:1212 [chan 210] Sesch channel 210 request ok

Based on the test result, marking the bug Verified
Comment 12 errata-xmlrpc 2023-05-16 08:15:59 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (ansible-freeipa bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:2752