Certain Active Directory parameters, if missing, will break ldap configuration badly even if they are not needed.
https://github.com/jsomara/ldap_fluff/commit/5afebbd547a653f70ccab48cf5672c23c38f9fbf The bug also applied to some IPA settings!
Note on how to reproduce: 1. Manually configure katello in ActiveDirectory mode. 2. Leave out "anon_queries" value 3. Observe breakage 1. Manually configure katello in IPA mode 2. Leave out "group_base" value 3. Observe breakage
Verified: * candlepin-0.7.8.1-1.el6cf.noarch * candlepin-selinux-0.7.8.1-1.el6cf.noarch * candlepin-tomcat6-0.7.8.1-1.el6cf.noarch * katello-1.1.12-20.el6cf.noarch * katello-all-1.1.12-20.el6cf.noarch * katello-candlepin-cert-key-pair-1.0-1.noarch * katello-certs-tools-1.1.8-1.el6cf.noarch * katello-cli-1.1.8-12.el6cf.noarch * katello-cli-common-1.1.8-12.el6cf.noarch * katello-common-1.1.12-20.el6cf.noarch * katello-configure-1.1.9-11.el6cf.noarch * katello-glue-candlepin-1.1.12-20.el6cf.noarch * katello-glue-pulp-1.1.12-20.el6cf.noarch * katello-qpid-broker-key-pair-1.0-1.noarch * katello-qpid-client-key-pair-1.0-1.noarch * katello-selinux-1.1.1-2.el6cf.noarch * pulp-1.1.14-1.el6cf.noarch * pulp-common-1.1.14-1.el6cf.noarch * pulp-selinux-server-1.1.14-1.el6cf.noarch
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2012-1543.html