Red Hat Satellite engineering is moving the tracking of its product development work on Satellite to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "Satellite project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs will be migrated starting at the end of May. If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "Satellite project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/SAT-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 2185681 - When using RHDS (Directory Server) the "User Group" feature it's not working as it should be
Summary: When using RHDS (Directory Server) the "User Group" feature it's not working ...
Keywords:
Status: CLOSED DUPLICATE of bug 2127089
Alias: None
Product: Red Hat Satellite
Classification: Red Hat
Component: Authentication
Version: 6.12.3
Hardware: All
OS: All
unspecified
high
Target Milestone: Unspecified
Assignee: Waldirio M Pinheiro
QA Contact: Satellite QE Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-04-10 23:29 UTC by Waldirio M Pinheiro
Modified: 2024-05-09 14:12 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2024-05-09 14:12:58 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Foreman Issue Tracker 36306 0 Normal New When using RHDS (Directory Server) the "User Group" feature it's not working as it should be 2023-04-16 17:17:39 UTC
Red Hat Issue Tracker SAT-21550 0 None None None 2023-11-28 13:18:39 UTC

Description Waldirio M Pinheiro 2023-04-10 23:29:32 UTC 
Description of problem:
When setting the "Auth Source" pointing to a POSIX server, and enabling the "User Group" feature, it's not working as it should be.

Version-Release number of selected component (if applicable):
6.10 / 6.11 / 6.12

How reproducible:
100%

Steps to Reproduce:
1. Install sat and rhds
2. Create the user and group on rhds
3. Configure satellite in order to login using the credentials
4. Set correctly the user group feature, in order to match to the user group

Actual results:
When login, the user gets permission denied, and after refresh the user group (via webUI or CLI) the user is able to inherit the correct permission. However, in a second login, the user lost all the permissions provided by User Group

Expected results:
First, the match should be working during the login process, once the "usergroup sync" feature is enabled. This is not working.
Second, once we hit the refresh button and sync the information, this should not be lost once the customer logoff/logon.

Additional info:
Comment 5 Bryan Kearney 2023-04-16 20:03:25 UTC 
Upstream bug assigned to wpinheir
Comment 10 Adam Ruzicka 2024-05-09 14:12:58 UTC 
After looking at several BZs in this area, this seems to be a duplicate of BZ2127089. This BZ speaks about using RHDS. The older BZ doesn't mention RHDS explicitly, but it mentions specific schema that seems to cause this. This schema seems to be used by RHDS by default.

*** This bug has been marked as a duplicate of bug 2127089 ***
Note You need to log in before you can comment on or make changes to this bug.