Bug 583748
| Summary: | LDAP: rhq role to ldap group mapping should happen at higher level of the container | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Other] RHQ Project | Reporter: | Sunil Kondkar <skondkar> | ||||||
| Component: | Configuration | Assignee: | RHQ Project Maintainer <rhq-maint> | ||||||
| Status: | CLOSED DUPLICATE | QA Contact: | Corey Welton <cwelton> | ||||||
| Severity: | medium | Docs Contact: | |||||||
| Priority: | low | ||||||||
| Version: | 3.0.0 | ||||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | All | ||||||||
| OS: | Linux | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2010-04-19 16:57:17 UTC | Type: | --- | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Bug Depends On: | |||||||||
| Bug Blocks: | 577267 | ||||||||
| Attachments: |
|
||||||||
Created attachment 407622 [details]
server log for communication error
Sunil, I think this is a dupe of 582471, can you compare? *** This bug has been marked as a duplicate of bug 582471 *** |
Created attachment 407620 [details] Screenshot for connection error in UI Description of problem: For rhq role mapping to windows active directory server groups, if the search base is configured at a specific group level say "cn=group1,dc=test,dc=pnq,dc=com", the mapping is woking fine. However, if the search base configured is at the higher level where the groups are created say "dc=test,dc=pnq,dc=com", the group mapping is not working and is returning LDAP communication error. Please refer the attached screenshot and stack trace. Active directory is setup and is running and some groups and users are added. OS: windows 2003 Active directory version: windows 2003 Hostname: win2k3red.test.pnq.com Version-Release number of selected component (if applicable): JON version: 2.4.0-SNAPSHOT How reproducible: Steps to Reproduce: 1. Login to rhq. (Jon Server URL: suniltest.usersys.redhat.com:7080) 2. Navigate to 'Administration->System Configuration->Settings' screen. 3. In 'LDAP Configuration Properties' section, enter and save the configuration properties as below: URL: ldap://win2k3red.test.pnq.com Search Base: dc=test,dc=pnq,dc=com Username: cn=Administrator,cn=Users,dc=test,dc=pnq,dc=com Password: RedHat123 Search Filter: objectclass=* Login Property: cn Group Search Filter: objectclass=group Group Member Filter: member 4. Navigate to 'Administration->Security->Roles screen. 5. Click on the link 'All Resources Role'. 6. Click on the button 'ADD TO LIST' in 'Assigned Ldap Groups' section. 7. It returns below error: Actual results: the LDAP group to rhq role mapping is not working and is returning LDAP communication error. Expected results: It should display the list of related LDAP groups available on active directory server. Additional info: