Bug 877127

Summary: Extract the UPN from the pac
Product: Red Hat Enterprise Linux 7 Reporter: Dmitri Pal <dpal>
Component: sssdAssignee: Jakub Hrozek <jhrozek>
Status: CLOSED DUPLICATE QA Contact: Kaushik Banerjee <kbanerje>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 7.0CC: grajaiya, jgalipea, jhrozek, pbrezina
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 877129 (view as bug list) Environment:
Last Closed: 2013-04-22 13:45:44 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 877129    

Description Dmitri Pal 2012-11-15 18:44:20 UTC 
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/sssd/ticket/1634

We currently 'build' a UPN from samaccountname + domain for AD trust users in the ipa subdomain code. But we shouldn't as the UPN may be arbitrarily different in AD.
We should extract the UPN from the PAC and pass it down to the code that create the user in the database.
Comment 1 Jenny Severance 2013-03-13 15:13:07 UTC 
please add steps to reproduce and define customer facing issue
Comment 2 Jakub Hrozek 2013-03-19 08:12:53 UTC 
To test this go to the AD MMC and create a user named joe, but manually set the upn to be bob@domain.