automember rebuild membership not working as expected

[389-ds-bot]

Cloned from Pagure issue: https://pagure.io/389-ds-base/issue/47507

• Created at 2013-09-10 16:26:04 by akrivoka
• Closed as Fixed
• Assigned to mreynolds (@mreynolds389)
• Associated bugzillas
  • https://bugzilla.redhat.com/show_bug.cgi?id=1006563

---

Trying to test out the automember rebuild membership task, for the purpose of integrating it into freeipa (see ticket https://fedorahosted.org/freeipa/ticket/3752), but I can't get it to work.

I am testing on F19, with the following packages:

freeipa-admintools-3.3.0-2.fc19.x86_64
freeipa-client-3.3.0-2.fc19.x86_64
freeipa-server-3.3.0-2.fc19.x86_64
freeipa-python-3.3.0-2.fc19.x86_64
389-ds-base-devel-1.3.1.7-1.fc19.x86_64
389-ds-base-1.3.1.7-1.fc19.x86_64
389-ds-base-libs-1.3.1.7-1.fc19.x86_64

Reproduction:

1. Install FreeIPA server:
# ipa-server-install

2. Authenticate as admin:
# kinit admin

3. Add a hostgroup:
# ipa hostgroup-add --desc="Web Servers" webservers

4. Add a host:
# ipa host-add web1.example.com --force

5. Add an automember rule:
# ipa automember-add --type=hostgroup webservers
# ipa automember-add-condition --key=fqdn --type=hostgroup --inclusive-regex=^web[1-9]+\.example\.com webservers

6. Verify that automember rule works by adding a new host:
# ipa host-add web2.example.com --force
# ipa hostgroup-show webservers
  Host-group: webservers
  Description: Web Servers
  Member hosts: web2.example.com

7. Try to rebuild membership:
# cat rebuild.ldif 
dn: cn=rt,cn=automember rebuild membership,cn=tasks,cn=config
changetype: add
objectClass: top
objectClass: extensibleObject
cn: rt
basedn: dc=idm,dc=lab,dc=eng,dc=brq,dc=redhat,dc=com
filter: (fqdn=*)
scope: sub

# ldapmodify -x -D 'cn=directory manager' -w blablabla -f rebuild.ldif
adding new entry "cn=rt,cn=automember rebuild membership,cn=tasks,cn=config"

8. Host web1.example.com is still not a member of hostgroup webservers:
# ipa hostgroup-show webservers
  Host-group: webservers
  Description: Web Servers
  Member hosts: web2.example.com

Expected:

8. After rebuilding memberships, host web1.example.com should become a member of hostgroup webservers.

[389-ds-bot]

Comment from mreynolds (@mreynolds389) at 2013-09-11 01:58:43

attachment
0001-Ticket-47507-automember-rebuild-task-not-working-as-.patch

[389-ds-bot]

Comment from nkinder (@nkinder) at 2013-09-11 02:14:17

Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1006563

[389-ds-bot]

Comment from mreynolds (@mreynolds389) at 2013-09-11 02:17:17

git merge ticket47507
Updating 8358b43..d2637dd
Fast-forward
ldap/servers/plugins/automember/automember.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)

git push origin master
Counting objects: 13, done.
Delta compression using up to 4 threads.
Compressing objects: 100% (7/7), done.
Writing objects: 100% (7/7), 939 bytes, done.
Total 7 (delta 4), reused 0 (delta 0)
To ssh://git.fedorahosted.org/git/389/ds.git
8358b43..d2637dd master -> master

commit d2637dd
Author: Mark Reynolds mreynolds389@redhat.com
Date: Tue Sep 10 15:39:22 2013 -0400

1.3.1

f322788..6bdc635 389-ds-base-1.3.1 -> 389-ds-base-1.3.1

[389-ds-bot]

Comment from mreynolds (@mreynolds389) at 2017-02-11 23:12:42

Metadata Update from @mreynolds389:

• Issue assigned to mreynolds389
• Issue set to the milestone: 1.3.1.9