-
Notifications
You must be signed in to change notification settings - Fork 235
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ldap_group_type should be string and not integer #5402
Comments
Hi, thanks for the report. It looks like the man page entry is already fixed https://github.com/SSSD/sssd/blob/master/src/man/sssd-ldap-attributes.5.xml#L742 . But the python API used by authconfig still has I wonder if you would be interested to send a pull-request to fix this? bye, |
Hi Sumit, I am not sure if I did this correctly. My experiences with code management in GitHub are very limited. Best regards, |
#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
SSSD#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
SSSD#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
SSSD#5402 Reviewed-by: Sumit Bose <sbose@redhat.com>
Fixed by 2786071 |
We have the following line in our sssd.conf:
ldap_group_type = groupType
This leads to an error message (e.g. when running authconfig):
TypeError: Expected <type 'int'> for ldap_group_type, received <type 'str'>
The manpage actually states that an integer is required, but at the same time describes the value of this parameter as follows:
So the default value for AD provider is actually a string ("groupType") and the description also implies a string, as LDAP attribute names are rarely integers. The content of the LDAP attribute indeed should be a integer, but not the attribute name itself.
This is observed with SSSD version 1.16.5 on CentOS but I think the current code branch still has the same issue.
The text was updated successfully, but these errors were encountered: