-
Notifications
You must be signed in to change notification settings - Fork 56
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
/etc/group.cache lists group members with distinguished name instead of username #35
Comments
Comment #1 originally posted by jaqx0r on 2014-10-20T04:32:15.000Z: I see you have rfc2370bis = 1 in the config; does that actually work? |
Comment #2 originally posted by jaqx0r on 2014-10-20T04:42:26.000Z: It seems that if the patch in # 8 was included, then there's no groups support for 2307bis (yet) |
Comment #3 originally posted by jaqx0r on 2014-10-20T05:09:45.000Z: I think this is working as unintended -- nsscache doesn't support rfc2307bis out of the box, but this shold be fixed soon. |
Comment #4 originally posted by jaqx0r on 2014-10-20T05:10:22.000Z: Fixed in github master. |
Hello, I have just checked out the master branch and built nsscache, and the issue mentioned here still persists! Has not been fixed already? |
Please share your configuration and the command line you used, an example On Thu, 4 Aug 2016, 18:29 oregszun notifications@github.com wrote:
|
nsscache.conf [DEFAULT] nssdb_dir = /var/lib/misc [passwd] [group] [shadow] [sshkey] |
dn: cn=whatever-ldap,ou=Groups,dc=whatever,dc=com |
ldap_rfc2307bis_alt = 1 [root@build nsscache]# nsscache -v update [root@build ~]# head -n 1 /etc/group.cache No members at all. |
ldap_rfc2307bis_alt = 0 [root@build nsscache]# nsscache -v update [root@build ~]# head -n 1 /etc/group.cache DN showed as member. |
Original issue 34 created by jaqx0r on 2014-09-07T08:33:27.000Z:
What steps will reproduce the problem?
1.Group definition in LDAP
dn: cn=thglanzm,ou=Groups,dc=domain,dc=de
objectClass: posixGroup
cn: thglanzm
gidNumber: 10074
memberUid: uid=thglanzm,ou=People,dc=domain,dc=de
structuralObjectClass: posixGroup
entryUUID: f3fffb3c-8994-1033-82c3-d574d9524b6e
creatorsName: cn=manager,dc=domain,dc=de
createTimestamp: 20140616112732Z
entryCSN: 20140616112732.904794Z# 000000# 000# 000000
modifiersName: cn=manager,dc=domain,dc=de
modifyTimestamp: 20140616112732Z
[DEFAULT]
source = ldap
cache = files
maps = passwd, group, shadow, sshkey
timestamp_dir = /var/lib/nsscache
ldap_uri = ldap://ldap1
ldap_base = dc=domain,dc=de
ldap_filter = (objectclass=posixAccount)
ldap_bind_dn = "cn=pam,dc=domain,dc=de"
ldap_bind_password = "password"
nssdb_dir = /var/lib/misc
files_dir = /etc
files_cache_filename_suffix = cache
[passwd]
ldap_base = ou=People,dc=domain,dc=de
[group]
ldap_base = ou=Groups,dc=domain,dc=de
ldap_filter = (objectclass=posixGroup)
rfc2307bis = 1
[shadow]
ldap_filter = (objectclass=shadowAccount)
[sshkey]
ldap_base = ou=People,dc=domain,dc=de
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:uid=thglanzm,ou=People,dc=domain,dc=de
What is the expected output? What do you see instead?
Expected Output:
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:thglanzm
I see instead:
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:uid=thglanzm,ou=People,dc=domain,dc=de
What version of the product are you using? On what operating system?
I used the latest release nsscache-0.23.tar.gz and the git head as of
2014-09-07.
Please provide any additional information below.
I wrote a small patch which I assume is wrong because it fights the symptoms instead of removes the root cause. Can someone who knows python and knows the code base better, please write a proper patch?
The text was updated successfully, but these errors were encountered: