1760417 – duplicate users get created from ldap logins

Bug 1760417 - duplicate users get created from ldap logins

Summary: duplicate users get created from ldap logins

Keywords:
Status:	CLOSED INSUFFICIENT_DATA
Alias:	None
Product:	Red Hat CloudForms Management Engine
Classification:	Red Hat
Component:	Appliance
Sub Component:
Version:	5.10.10
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	high
Target Milestone:	GA
Target Release:	5.10.z
Assignee:	Joe Vlcek
QA Contact:	John Dupuy
Docs Contact:	Red Hat CloudForms Documentation
URL:
Whiteboard:	auth:externalauth:openldap:ad
Depends On:	1424618
Blocks:	1379420 1487689 1494192 1536221
TreeView+	depends on / blocked

Reported:	2019-10-10 13:51 UTC by Gellert Kis
Modified:	2023-09-14 05:44 UTC (History)
CC List:	16 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:	1424618
Environment:
Last Closed:	2019-12-04 18:48:50 UTC
Category:	Bug
Cloudforms Team:	CFME Core
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Comment 2 Joe Vlcek 2019-10-10 15:50:25 UTC

MananageIQ can currently be configured with different authentication mechanisms.
The userid for external authentication is in UPN format.
The userid for SAML is not.

What authentication mechanism is this user using?


Please provide all the information outlined under "eporting Authentication Issues"
http://www.manageiq.org/blog/2018/01/troubleshooting-auth/#reporting-authentication-issues

Also has QE been able to reproduce this issue?

The new description in this BZ describes SAML being used. If SAML is being used
it is not the same as the old issue that was reopened to track this new issue. As
the old/reopened issue describes the API being used and the API does not support SAML.


We also do not support using different authentication mechanisms, e.g.: It is not a
supported configuration to use SAML for the ManageIQ UI and use LDAP for the API.

Is the customer attempting to configuration SAML for the ManageIQ UI and use LDAP
for the API?

Thank you,
JoeV

Comment 3 Joe Vlcek 2019-10-10 15:51:54 UTC

Sorry:

Correction:

MananageIQ can "NOT" currently be configured with different authentication mechanisms.

Sorry about that. JoeV

(In reply to Joe Vlcek from comment #2)
> MananageIQ can currently be configured with different authentication
> mechanisms.
> The userid for external authentication is in UPN format.
> The userid for SAML is not.
> 
> What authentication mechanism is this user using?
> 
> 
> Please provide all the information outlined under "eporting Authentication
> Issues"
> http://www.manageiq.org/blog/2018/01/troubleshooting-auth/#reporting-
> authentication-issues
> 
> Also has QE been able to reproduce this issue?
> 
> The new description in this BZ describes SAML being used. If SAML is being
> used
> it is not the same as the old issue that was reopened to track this new
> issue. As
> the old/reopened issue describes the API being used and the API does not
> support SAML.
> 
> 
> We also do not support using different authentication mechanisms, e.g.: It
> is not a
> supported configuration to use SAML for the ManageIQ UI and use LDAP for the
> API.
> 
> Is the customer attempting to configuration SAML for the ManageIQ UI and use
> LDAP
> for the API?
> 
> Thank you,
> JoeV

Comment 6 Red Hat Bugzilla 2023-09-14 05:44:21 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days

Note You need to log in before you can comment on or make changes to this bug.