/etc/group.cache lists group members with distinguished name instead of username #35
Comments
|
Comment #1 originally posted by jaqx0r on 2014-10-20T04:32:15.000Z: I see you have rfc2370bis = 1 in the config; does that actually work? |
|
Comment #2 originally posted by jaqx0r on 2014-10-20T04:42:26.000Z: It seems that if the patch in # 8 was included, then there's no groups support for 2307bis (yet) |
|
Comment #3 originally posted by jaqx0r on 2014-10-20T05:09:45.000Z: I think this is working as unintended -- nsscache doesn't support rfc2307bis out of the box, but this shold be fixed soon. |
|
Comment #4 originally posted by jaqx0r on 2014-10-20T05:10:22.000Z: Fixed in github master. |
|
Hello, I have just checked out the master branch and built nsscache, and the issue mentioned here still persists! Has not been fixed already? |
|
Please share your configuration and the command line you used, an example On Thu, 4 Aug 2016, 18:29 oregszun notifications@github.com wrote:
|
|
nsscache.conf [DEFAULT] nssdb_dir = /var/lib/misc [passwd] [group] [shadow] [sshkey] |
|
dn: cn=whatever-ldap,ou=Groups,dc=whatever,dc=com |
|
ldap_rfc2307bis_alt = 1 [root@build nsscache]# nsscache -v update [root@build ~]# head -n 1 /etc/group.cache No members at all. |
|
ldap_rfc2307bis_alt = 0 [root@build nsscache]# nsscache -v update [root@build ~]# head -n 1 /etc/group.cache DN showed as member. |
Original issue 34 created by jaqx0r on 2014-09-07T08:33:27.000Z:
What steps will reproduce the problem?
1.Group definition in LDAP
dn: cn=thglanzm,ou=Groups,dc=domain,dc=de
objectClass: posixGroup
cn: thglanzm
gidNumber: 10074
memberUid: uid=thglanzm,ou=People,dc=domain,dc=de
structuralObjectClass: posixGroup
entryUUID: f3fffb3c-8994-1033-82c3-d574d9524b6e
creatorsName: cn=manager,dc=domain,dc=de
createTimestamp: 20140616112732Z
entryCSN: 20140616112732.904794Z# 000000# 000# 000000
modifiersName: cn=manager,dc=domain,dc=de
modifyTimestamp: 20140616112732Z
[DEFAULT]
source = ldap
cache = files
maps = passwd, group, shadow, sshkey
timestamp_dir = /var/lib/nsscache
ldap_uri = ldap://ldap1
ldap_base = dc=domain,dc=de
ldap_filter = (objectclass=posixAccount)
ldap_bind_dn = "cn=pam,dc=domain,dc=de"
ldap_bind_password = "password"
nssdb_dir = /var/lib/misc
files_dir = /etc
files_cache_filename_suffix = cache
[passwd]
ldap_base = ou=People,dc=domain,dc=de
[group]
ldap_base = ou=Groups,dc=domain,dc=de
ldap_filter = (objectclass=posixGroup)
rfc2307bis = 1
[shadow]
ldap_filter = (objectclass=shadowAccount)
[sshkey]
ldap_base = ou=People,dc=domain,dc=de
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:uid=thglanzm,ou=People,dc=domain,dc=de
What is the expected output? What do you see instead?
Expected Output:
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:thglanzm
I see instead:
grep ^thglanzm /etc/group.cache
thglanzm:*:10074:uid=thglanzm,ou=People,dc=domain,dc=de
What version of the product are you using? On what operating system?
I used the latest release nsscache-0.23.tar.gz and the git head as of
2014-09-07.
Please provide any additional information below.
I wrote a small patch which I assume is wrong because it fights the symptoms instead of removes the root cause. Can someone who knows python and knows the code base better, please write a proper patch?
The text was updated successfully, but these errors were encountered: