Bug 830346
| Summary: | ADD operations not in audit log | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | Nathan Kinder <nkinder> |
| Component: | 389-ds-base | Assignee: | Rich Megginson <rmeggins> |
| Status: | CLOSED ERRATA | QA Contact: | Sankar Ramalingam <sramling> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | high | ||
| Version: | 6.4 | CC: | jgalipea |
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | 389-ds-base-1.2.11.12-1.el6 | Doc Type: | Bug Fix |
| Doc Text: |
Cause: Enabling audit logging in the directory server, and performing an LDAP ADD operation.
Consequence: The ADD operation is not logged.
Fix: Remove a regression in the audit log code that caused ADD operations to be ignored.
Result: LDAP ADD operations are logged to the audit log.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-02-21 08:17:45 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Nathan Kinder
2012-06-08 21:39:00 UTC
This request was not resolved in time for the current release. Red Hat invites you to ask your support representative to propose this request, if still desired, for consideration in the next release of Red Hat Enterprise Linux. This request was erroneously removed from consideration in Red Hat Enterprise Linux 6.4, which is currently under development. This request will be evaluated for inclusion in Red Hat Enterprise Linux 6.4. test coverage :: trac365 in acceptance/basic Acceptance test results for basic test suite is successful. Hence marking the bug as Verified.
############## Result for backend test : Basic run
Basic run elapse time : 00:04:06
Basic run Tests PASS : 100% (55/55)
add an user uid=u365
adding new entry uid=u365,o=airius.com
adding an entry u365: OK
modifying entry uid=u365,o=airius.com
replacing userpassword of an entry u365: OK
check audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit
grep u365 /var/log/dirsrv/slapd-dell-pe2800-01/audit
dn: uid=u365,o=airius.com
uid: u365
dn: uid=u365,o=airius.com
dn: uid=u365,o=airius.com
Found u365 in /var/log/dirsrv/slapd-dell-pe2800-01/audit
audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit does not include unhashed#user#password
audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit does not include clear password: newtuser0
disabling audig log
modifying entry cn=config
disabling audig log: OK
TestCase [trac365] result-> [PASS]
verified :: 200|0 19 14:38:45|TP Start 520|0 19 25357 1 1|=============== Verifing trac ticket 365 =============== 520|0 19 25357 1 2|enabling audig log 520|0 19 25357 1 3|/usr/lib64/mozldap/ldapmodify -p 21795 -h dell-pe2800-01.rhts.eng.bos.redhat.com -D cn=directory manager -w Secret123 520|0 19 25357 1 4|enabling audig log: OK 520|0 19 25357 1 5|-----------------StopSlapd: Called ----------------- 520|0 19 25357 1 6|Calling StopSlapd /usr/lib64/dirsrv/slapd-dell-pe2800-01 520|0 19 25357 1 7|check instance: [/usr/lib64/dirsrv/slapd-dell-pe2800-01] 520|0 19 25357 1 8|instance [/usr/lib64/dirsrv/slapd-dell-pe2800-01] is alive on port [21795] 520|0 19 25357 1 9|check instance: [/usr/lib64/dirsrv/slapd-dell-pe2800-01] 520|0 19 25357 1 10|[/usr/lib64/dirsrv/slapd-dell-pe2800-01] does exist but not alive on port [21795] 520|0 19 25357 1 11|command: [/usr/lib64/mozldap/ldapsearch -1 -h dell-pe2800-01.rhts.eng.bos.redhat.com -p 21795 -s base -b "" objectclass=* supportedldapversion] 520|0 19 25357 1 12|command: return code: [91] 520|0 19 25357 1 13|StopSlapd: Slapd Server has been Shutdown Successfully 520|0 19 25357 1 14|-----------------StopSlapd: Completed----------------- 520|0 19 25357 1 15| 520|0 19 25357 1 16|-----------------StartSlapd: Called ----------------- 520|0 19 25357 1 17|Calling StartSlapd /usr/lib64/dirsrv/slapd-dell-pe2800-01 520|0 19 25357 1 18|check instance: [/usr/lib64/dirsrv/slapd-dell-pe2800-01] 520|0 19 25357 1 19|instance [/usr/lib64/dirsrv/slapd-dell-pe2800-01] is alive on port [21795] 520|0 19 25357 1 20|StartSlapd: Server successfully started 520|0 19 25357 1 21|-----------------StartSlapd: Completed----------------- 520|0 19 25357 1 22| 520|0 19 25357 1 23|add an user uid=u365 520|0 19 25357 1 24|/usr/lib64/mozldap/ldapmodify -p 21795 -h dell-pe2800-01.rhts.eng.bos.redhat.com -D cn=directory manager -w Secret123 -a 520|0 19 25357 1 25|adding an entry u365: OK 520|0 19 25357 1 26|/usr/lib64/mozldap/ldapmodify -p 21795 -h dell-pe2800-01.rhts.eng.bos.redhat.com -D cn=directory manager -w Secret123 520|0 19 25357 1 27|replacing userpassword of an entry u365: OK 520|0 19 25357 1 28|check audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit 520|0 19 25357 1 29|grep u365 /var/log/dirsrv/slapd-dell-pe2800-01/audit 520|0 19 25357 1 30|Found u365 in /var/log/dirsrv/slapd-dell-pe2800-01/audit 520|0 19 25357 1 31|audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit does not include unhashed#user#password 520|0 19 25357 1 32|audit log /var/log/dirsrv/slapd-dell-pe2800-01/audit does not include clear password: newtuser0 520|0 19 25357 1 33|disabling audig log 520|0 19 25357 1 34|/usr/lib64/mozldap/ldapmodify -p 21795 -h dell-pe2800-01.rhts.eng.bos.redhat.com -D cn=directory manager -w Secret123 520|0 19 25357 1 35|disabling audig log: OK 520|0 19 25357 1 36|TestCase [trac365] result-> [PASS] 220|0 19 0 14:38:58|PASS version :: 389-ds-base-1.2.11.15-8.el6 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2013-0503.html |