Bug 768168
| Summary: | [RFE] Allow Constructing uid from Active Directory objectSid | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | Dmitri Pal <dpal> |
| Component: | sssd | Assignee: | Jakub Hrozek <jhrozek> |
| Status: | CLOSED ERRATA | QA Contact: | Kaushik Banerjee <kbanerje> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | high | ||
| Version: | 6.0 | CC: | grajaiya, jgalipea, jrieden, prc |
| Target Milestone: | rc | Keywords: | FutureFeature |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | sssd-1.9.1-1.el6 | Doc Type: | Enhancement |
| Doc Text: |
Cause: Some Active Directory deployments do not carry the POSIX attributes such as UID number at all.
Consequence: In order to use accounts from Active Directory in a Linux environment, the AD administrators would have to enable a special Services for UNIX extenstion with older AD servers and assign UID and GID numbers.
Change: A new ID mapping library was implemented in the SSSD. The ID mapping library is capable of automatically generating UNIX IDs from Windows Security Identifiers (SIDs)
Result: The administrator is able to use Windows accounts easily in a UNIX environment.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-02-21 09:34:48 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 736854, 998474 | ||
|
Description
Dmitri Pal
2011-12-15 22:25:15 UTC
This request was not resolved in time for the current release. Red Hat invites you to ask your support representative to propose this request, if still desired, for consideration in the next release of Red Hat Enterprise Linux. This request was erroneously removed from consideration in Red Hat Enterprise Linux 6.4, which is currently under development. This request will be evaluated for inclusion in Red Hat Enterprise Linux 6.4. Verified in version 1.9.2-13 Report from baker automation run: [ PASS ] idmap_001 ldap provider [ PASS ] idmap_002 ldap provider,idmapping=false [ PASS ] idmap_003 ldap_idmap_range_size is more than the difference of max-min [ PASS ] idmap_004 ldap_idmap_range_min is negative [ PASS ] idmap_005 ldap_idmap_range_max or ldap_idmap_range_min is a very large [ PASS ] idmap_006 All values are negative [ PASS ] idmap_007 ldap_idmap_range_min is zero [ PASS ] idmap_008 ldap_idmap_range_max is less than ldap_idmap_range_min [ PASS ] idmap_009 ldap_idmap_default_domain_sid=junk [ PASS ] idmap_010 ldap_idmap_default_domain_sid=<doesn't match the AD domain sid> [ PASS ] idmap_011 ldap_idmap_default_domain_sid=<matches the AD domain sid> [ PASS ] idmap_012 ldap_idmap_autorid_compat=true and ldap_idmap_default_domain_sid is not mentioned [ PASS ] idmap_013 ldap_idmap_autorid_compat=true and and ldap_idmap_default_domain_sid is not matching the AD domain SID Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2013-0508.html |