First Last Prev Next    This bug is not in your last search results.
Bug 24164 - SID Mapping deaktivieren
SID Mapping deaktivieren
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: Samba4
UCS 3.0
Other Linux
: P5 normal (vote)
: UCS 3.0 - RC
Assigned To: Stefan Gohmann
Arvid Requate
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2011-10-24 10:44 CEST by Stefan Gohmann
Modified: 2011-12-13 15:49 CET (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Gohmann univentionstaff 2011-10-24 10:44:15 CEST 
Für Migrationsszenarien muss die SID Synchronisation  per UCR abgeschaltet werden können.
Comment 1 Stefan Gohmann univentionstaff 2011-10-24 13:49:53 CEST 
Das SID Mapping kann per 
 ucr set connector/s4/mapping/sid="false"
deaktiviert werden. Damit auch reguläre sambaSIDs generiert werden, sollte zusätzlich directory/manager/samba3/legacy gesetzt werden.

Changelog nicht notwendig.
Comment 2 Arvid Requate univentionstaff 2011-11-24 14:11:12 CET 
Funktioniert, die Bugnummer wurde durch die QA noch im Changelog ergänzt.
Comment 3 Stefan Gohmann univentionstaff 2011-11-29 11:29:41 CET 
Beim Test des ersten Szenario hat das nicht funktioniert. Aus der connector.log des DC Backup:

29.11.2011 11:26:14,699 LDAP        (INFO   ): sid_to_ucs: SID mapping is disabled via UCR: connector/s4/mapping/sid
29.11.2011 11:26:14,699 LDAP        (INFO   ): sid_to_s4: UCS DN uid=test8,cn=users,dc=univention,dc=qa
29.11.2011 11:26:14,699 LDAP        (INFO   ): sid_to_ucs: objectSid found: [u'S-1-5-21-452007578-473252654-1900788060-1126']
29.11.2011 11:26:14,702 LDAP        (INFO   ): sid_to_ucs: modlist = [('univentionSamba4SID', None, u'S-1-5-21-452007578-473252654-1900788060-1126')]
29.11.2011 11:26:14,704 LDAP        (ERROR  ): failed in post_con_modify_functions
29.11.2011 11:26:14,705 LDAP        (ERROR  ): Traceback (most recent call last):
  File "/usr/lib/pymodules/python2.6/univention/s4connector/__init__.py", line 1123, in sync_to_ucs
    f(self, property_type, object)
  File "/usr/lib/pymodules/python2.6/univention/s4connector/s4/sid_mapping.py", line 118, in sid_to_ucs
    s4connector.lo.lo.modify(ucs_dn, ml)
  File "/usr/lib/pymodules/python2.6/univention/uldap.py", line 484, in modify
    self.lo.modify_s(dn, ml)
  File "/usr/lib/python2.6/dist-packages/ldap/ldapobject.py", line 322, in modify_s
    return self.result(msgid,all=1,timeout=self.timeout)
  File "/usr/lib/python2.6/dist-packages/ldap/ldapobject.py", line 422, in result
    res_type,res_data,res_msgid = self.result2(msgid,all,timeout)
  File "/usr/lib/python2.6/dist-packages/ldap/ldapobject.py", line 426, in result2
    res_type, res_data, res_msgid, srv_ctrls = self.result3(msgid,all,timeout)
  File "/usr/lib/python2.6/dist-packages/ldap/ldapobject.py", line 432, in result3
    ldap_result = self._ldap_call(self._l.result3,msgid,all,timeout)
  File "/usr/lib/python2.6/dist-packages/ldap/ldapobject.py", line 96, in _ldap_call
    result = func(*args,**kwargs)
UNDEFINED_TYPE: {'info': 'univentionSamba4SID: attribute type undefined', 'desc': 'Undefined attribute type'}

29.11.2011 11:26:14,707 LDAP        (INFO   ): Return  result for DN (uid=test8,cn=users,dc=univention,dc=qa)
Comment 4 Stefan Gohmann univentionstaff 2011-11-29 11:37:40 CET 
Mein Fehler, der Master war noch nicht aktualisiert.
Comment 5 Stefan Gohmann univentionstaff 2011-11-29 11:37:53 CET 
Wieder Verified.
Comment 6 Sönke Schwardt-Krummrich univentionstaff 2011-12-13 15:49:44 CET 
UCS 3.0-0 wurde veröffentlicht. Sollte der hier beschriebene Bug mit einer
neueren Version von UCS erneut auftreten, so sollte dieser Bug dupliziert
werden: "Clone This Bug"
First Last Prev Next    This bug is not in your last search results.