Bug 949961 - authconfig uses sss for automount
Summary: authconfig uses sss for automount
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: authconfig
Version: 5.9
Hardware: All
OS: Linux
low
medium
Target Milestone: rc
: ---
Assignee: Tomas Mraz
QA Contact: BaseOS QE - Apps
URL:
Whiteboard:
Depends On: 578325
Blocks: 1002709
TreeView+ depends on / blocked
 
Reported: 2013-04-09 11:27 UTC by Rui Gouveia
Modified: 2018-12-01 16:05 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of: 578325
Environment:
Last Closed: 2013-10-07 01:33:07 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description Rui Gouveia 2013-04-09 11:27:30 UTC
+++ This bug was initially created as a clone of Bug #578325 +++

Description of problem:

automount currently does not support sssd, but authconfig --enableldap --enablesssd results in:

automount: files sss

Needs to be:

automount: files ldap 

as before.

/var/log/messages shows:
Mar 30 13:46:11 cynosure automount[1118]: ignored unsupported autofs nsswitch source "sss"

and no automounted directories are available.

Version-Release number of selected component (if applicable):
authconfig-6.1.2-1.fc13

--- Additional comment from Tomas Mraz on 2010-03-31 02:36:13 EDT ---

There is a slight problem with this - will that really work in all cases to combine sss and ldap in this way?

Wouldn't it be better to just disable sssd altogether if you need automount?

--- Additional comment from Stephen Gallagher on 2010-03-31 07:27:47 EDT ---

Well, this is something of an interesting case. SSSD will work just fine combined with nss_ldap for other maps. However, it will add to the duties of authconfig.

Authconfig, when setting up LDAP as the identity store, will need to configure both the sssd.conf (for users and groups) and also the traditional ldap.conf (so nss_ldap can handle automount and friends).

The resulting configuration should be:

passwd    files sss
shadow    files sss
group     files sss
netgroup  files ldap
automount files ldap

This should be a perfectly sound configuration. As I said, the only limitation is that it requires configuring both sssd.conf and ldap.conf (which you may already be doing. I don't know the internals at the moment).

--- Additional comment from Tomas Mraz on 2010-03-31 07:46:40 EDT ---

OK, I'll modify the nss configuration according to this.

--- Additional comment from Fedora Update System on 2010-04-07 16:30:55 EDT ---

authconfig-6.1.3-1.fc13 has been submitted as an update for Fedora 13.
http://admin.fedoraproject.org/updates/authconfig-6.1.3-1.fc13

--- Additional comment from Fedora Update System on 2010-04-09 00:04:28 EDT ---

authconfig-6.1.3-1.fc13 has been pushed to the Fedora 13 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update authconfig'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/authconfig-6.1.3-1.fc13

--- Additional comment from Taunus on 2010-04-16 03:44:21 EDT ---

On rhel5 I have:
automount files

in nsswitch.conf and it works anyway...?

--- Additional comment from Stephen Gallagher on 2010-04-16 06:53:19 EDT ---

Taunus:
Are you using LDAP to serve automount information? If not, then this is irrelevant to you.

--- Additional comment from Taunus on 2010-04-22 04:02:44 EDT ---

No I'm not

--- Additional comment from Fedora Update System on 2010-04-22 18:57:27 EDT ---

authconfig-6.1.3-1.fc13 has been pushed to the Fedora 13 stable repository.  If problems still persist, please make note of it in this bug report.

--- Additional comment from Orion Poplawski on 2010-04-22 19:04:35 EDT ---

Similar issue in RHEL 6:

automount:  files sss ldap

Should this be cloned to track that?

--- Additional comment from Tomas Mraz on 2010-04-23 03:04:46 EDT ---

I don't need it, as we have authconfig-6.1.3 already staged for the next beta release.

Comment 3 RHEL Program Management 2013-05-01 06:53:45 UTC
This request was evaluated by Red Hat Product Management for
inclusion in the current release of Red Hat Enterprise Linux.
Because the affected component is not scheduled to be updated
in the current release, Red Hat is unable to address this
request at this time.

Red Hat invites you to ask your support representative to
propose this request, if appropriate, in the next release of
Red Hat Enterprise Linux.

Comment 7 Andrius Benokraitis 2013-10-07 01:33:07 UTC
This Bugzilla has been reviewed by Red Hat and is not planned on being addressed in Red Hat Enterprise Linux 5, and therefore will be closed. If this bug is critical to production systems, please contact your Red Hat support representative and provide sufficient business justification.


Note You need to log in before you can comment on or make changes to this bug.