Univention Bugzilla – Bug 31407
Allow UMC modules and scripts to work in district mode
Last modified: 2014-06-12 09:20:58 CEST
Bug 30251 contains a patch that enables the UMC modules to work with active district mode. Please note: the patch is currently incomplete. There are some known flaw documented at Bug 30251 (and maybe there are still some more unknown flaws). All UMC modules have to be tested intensively after applying the patch, as it affects the OU lookup that is used in all UMC modules of UCS@school. The patch does not cover CLI tools and Joinscripts. These still have to be fixed too.
*** Bug 28244 has been marked as a duplicate of this bug. ***
*** Bug 31070 has been marked as a duplicate of this bug. ***
*** Bug 31063 has been marked as a duplicate of this bug. ***
*** Bug 32031 has been marked as a duplicate of this bug. ***
Created attachment 5881 [details] current patch
The following packages have been adapted: ucs-school-umc-computerroom 5.0.3-1.140.201405061120 ucs-school-lib 5.0.16-2.115.201405061229 ucs-school-netlogon-user-logonscripts 10.0.2-1.44.201405061128 ucs-school-s4-branch-site 1.0.1-1.3.201405061132 ucs-school-umc-distribution 11.0.3-1.65.201405061136 ucs-school-umc-groups 2.0.3-1.49.201405061141 Changelog entry has been created.
/usr/share/ucs-school-import/scripts/ucs-school-change-share-server seems to not handle district mode properly Everything else seems fine
(In reply to Dirk Wiesenthal from comment #7) > /usr/share/ucs-school-import/scripts/ucs-school-change-share-server > > seems to not handle district mode properly fixed ucs-school-import (10.0.15-1) unstable; urgency=low
Ok
Sorry, REOPENED: Some scripts which parse the dn with sed work with the districtname as ouname: ucs-school-lib/shell/base.sh school_ou cn=myslave,cn=dc,cn=server,cn=computers,ou=foo,ou=bar,dc=example,dc=com -> bar instead of foo! ucs-school-import/ucs-school-join-secondary-samba4 implements a copy of ucs-school-lib/shell/base.sh->school_ou! Same bug ucs-school-metapackage/00ucs-school-slave-check-ou.inst -> sed -nre "s/^.+,ou=([^,]+)(,ou=[^,]+)?,$ldap_base\$/\1/p" is wrong -> Joinscript fails!
(In reply to Dirk Wiesenthal from comment #10) > Sorry, REOPENED: > > Some scripts which parse the dn with sed work with the districtname as > ouname: > > ucs-school-lib/shell/base.sh > school_ou > cn=myslave,cn=dc,cn=server,cn=computers,ou=foo,ou=bar,dc=example,dc=com > -> bar instead of foo! Fixed. > ucs-school-import/ucs-school-join-secondary-samba4 > implements a copy of ucs-school-lib/shell/base.sh->school_ou! Same bug Removed broken code. The script now includes ucs-school-lib/base.sh and uses school_ou() > ucs-school-metapackage/00ucs-school-slave-check-ou.inst > -> sed -nre "s/^.+,ou=([^,]+)(,ou=[^,]+)?,$ldap_base\$/\1/p" is wrong > -> Joinscript fails! Removed broken code. The script now includes ucs-school-lib/base.sh and uses school_ou()
UMC modules do not work properly on DC slaves when district mode is enabled on the Master. The district-OU gets added to the school's DN when the UCR variable is set. This means that this very UCR variable has to be set everywhere. If only set on the DC master, schools are created correctly and modules work correctly on the master. But if the UCR variable is not set on DC slaves, those will (locally) build false DNs and thus show tracebacks as in https://forge.univention.org/bugzilla/show_bug.cgi?id=34337#c4 I do not know if this is to be fixed in the code or if this is a misconfiguration.
(In reply to Dirk Wiesenthal from comment #13) > I do not know if this is to be fixed in the code or if this is a > misconfiguration. Very simple answer: this is a misconfiguration. The district mode setting has to be the same throughout the whole domain: enabled on all systems or disabled on all systems. Other scenarios are not supported.
UCS@school 3.2 R2 has been released: http://docs.univention.de/release-notes-ucsschool-3.2R2-de.html If this error occurs again, please use "Clone This Bug".