Description of problem: My LDAP Server does not allow anonymous binds, but does work with simple authentication. I have been able to get many operations to work on my Redhat Server acting as an LDAP Clients except for automount. Version-Release number of selected component (if applicable): kernel-2.6.18-164.9.1.el5 autofs-5.0.1-0.rc2.131.el5_4.1 How reproducible: I have never been able to successfully bind and pull map information. Steps to Reproduce: 1. edit /etc/sysconfig/autofs providing LDAP_URI, SEARCH_BASE, LDAP Schema and the AUTH_CONF_FILE. 2. edit /etc/autofs_ldap_auth.conf <autofs_ldap_sasl_conf usetls="no" tlsrequired="no" authrequired="yes" user="bindid" secret="bindpw" /> 3. /etc/init.d/autofs restart 4. cd to an auto mounted directory Actual results: No such file or directory along with a bind failure. Expected results: The map would be found and the directory would be auto mounted.
Created attachment 404440 [details] Patch - add simple bind authentication
A test package including the patch above has been built and is available at: http://people.redhat.com/~ikent/autofs-5.0.1-0.rc2.143.bz579312.1.el5 Please test this package out and let me know how it goes.
Thanks so much for the quick response. The new package works perfectly. My only comment would be regarding the /etc/autofs_ldap_auth.conf file. Do you want the authrequired to be simple or the authtype to be simple? Either way it works and I appreciate your help. Thanks again.
(In reply to comment #3) > Thanks so much for the quick response. > The new package works perfectly. > > My only comment would be regarding the /etc/autofs_ldap_auth.conf file. > Do you want the authrequired to be simple or the authtype to be simple? Yes, good point, it does seem a little out of place, maybe. I'll have a think about that. > > Either way it works and I appreciate your help. No problem. Ian
Can you tell me or notify me when the patched version is available from Redhat as an "official" package? I want to install the official release on production systems for support purposes.
(In reply to comment #5) > Can you tell me or notify me when the patched version is available from Redhat > as an "official" package? > > I want to install the official release on production systems for support > purposes. That's going to be a while. Normally, this would be handled by requesting a hotfix which is supported until the next release (that would include the fix). Support do this, so the issue needs to be logged with them and subsequently escalated to engineering. But in this case we already have a known problem, a bug and a fix (almost done anyway) so the process should be fairly straight forward.
Created attachment 404825 [details] Patch - add simple bind authentication (updated) Change internal documentation in authentication configuration to better describe the function of the options. New build can be found at: http://people.redhat.com/~ikent/autofs-5.0.1-0.rc2.143.bz579312.2.el5
This request was evaluated by Red Hat Product Management for inclusion in the current release of Red Hat Enterprise Linux. Because the affected component is not scheduled to be updated in the current release, Red Hat is unfortunately unable to address this request at this time. Red Hat invites you to ask your support representative to propose this request, if appropriate and relevant, in the next release of Red Hat Enterprise Linux.
This request was erroneously denied for the current release of Red Hat Enterprise Linux. The error has been fixed and this request has been re-proposed for the current release.
Do you you know what the ETA is on getting this incorporated into the RHEL 5.X version of the AutoFS package? Thanks!
(In reply to comment #16) > Do you you know what the ETA is on getting this incorporated into the RHEL 5.X > version of the AutoFS package? Looks to me like the acks of this bug say this will be include in RHEL-5.7. That's the schedule I'm working to anyway.
An updated test package has been built for this bug. Please test this package. It can be found at: http://people.redhat.com/~ikent/autofs-5.0.1-0.rc2.148.bz579312.1.el5
(In reply to comment #18) > An updated test package has been built for this bug. > Please test this package. > > It can be found at: > http://people.redhat.com/~ikent/autofs-5.0.1-0.rc2.148.bz579312.1.el5 Thank you, worked like a charm in my test environment against AD (2008R2-based)!
I verified this fix on RH5.6, works perfect. Can you also provide a fix for RH 6.0 as this issue is also present in this release.
(In reply to comment #20) > I verified this fix on RH5.6, works perfect. > > Can you also provide a fix for RH 6.0 as this issue is also present in this > release. It's scheduled for inclusion in RHEL 6.1.
can you make the fix already available now @ http://people.redhat.com/~ikent, we require this for a roll out
(In reply to comment #22) > can you make the fix already available now @ http://people.redhat.com/~ikent, > we require this for a roll out I could direct you to a test package but ... Using a test package for a roll out, a package that isn't officially supported, probably isn't what your asking for. I recommend you contact support and discuss how to go about getting a current RHEL-6 supported package. Given that what you need is already included in the package currently with QA they may be able to help.
Already have a support case open, lets see from there ;)
This bug is verified, tested in the job (https://beaker.engineering.redhat.com/jobs/81486), which runs testcase(/CoreOS/autofs/bugzillas/bz579963), on distro RHEL5.7-Server-20110504.0.n.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2011-1079.html
Thanks guys!