Univention Bugzilla – Bug 54781
univention-adsearch broken for environments with multiple "custom" AD-Connectors
Last modified: 2023-02-01 17:24:15 CET
root@ucsbackup:~# univention-adsearch -c connector-tue samaccountname=stark /usr/sbin/univention-adsearch: line 97: connector-tue_ad_ldap_binddn: invalid variable name /usr/sbin/univention-adsearch: line 107: connector-tue_ad_ldap_host: invalid variable name /usr/sbin/univention-adsearch: line 108: connector-tue_ad_ldap_port: invalid variable name /usr/sbin/univention-adsearch: line 109: connector-tue_ad_ldap_base: invalid variable name Failed to connect to ldap URL 'ldap://' - LDAP client internal error: NT_STATUS_INVALID_PARAMETER Failed to connect to 'ldap://' with backend 'ldap': LDAP client internal error: NT_STATUS_INVALID_PARAMETER Failed to connect to ldap:// - LDAP client internal error: NT_STATUS_INVALID_PARAMETER
See URL above for a proposal for a fix that worked in the customer environment.
We fixed Bug 54780 for the customer, but the major problem is still, that the customer (Partner) is not able to upgrade the environments. The connectors are not working anymore.
b759ef7cd6 | Fix univention-adsearch for multi-connector setups 52ececd37f | cleanup: fix warning about deprecated option 09c7a9216b | Advisory update Package: univention-ad-connector Version: 14.0.10-8A~5.0.0.202301271123 Branch: ucs_5.0-0 Scope: errata5.0-2
The Script imports the relevant UCR variable via shell environment variables. As it is not the convention to use anythin but uppercase letters or `_` in environment variables. This merge request fixes the described issue by substituting `-` with `_` in the env variable evaluation. Other special characters like `?` `,` `!` will still cause problems. We should add a check to the prepare-new-instance script to reject connector names with special characters. OK: Code OK: Changelog OK: Yaml OK: Package Built OK: Bug Fixed Reproduced with Version: 14.0.10-1A~5.0.0.202206231934 Nev Version: 14.0.10-8A~5.0.0.202301271123 fixed the specific bug but not the underlying fragility regarding special characters in ucr variables.
<https://errata.software-univention.de/#/?erratum=5.0x560>