ROSA Linux Bugzilla – Bug 624
Client can not to recognize some LDAP groups
Last modified: 2013-02-06 17:21:26 MSK
Created attachment 455 [details]
Description of problem:
I use ROSA 2012 LTS as client for LDAP server. LDAP Server is SLES 11 and I have also client with OpenSUSE 11.
When I have loggged in OpenSUSE I see all group s for my LDAP user
arhiv:~ # id galkin
uid=10050(galkin) gid=10018(it) groups=10018(it),10036(rkvd),10033(philal),10042(sb),10045(obmen)
But when I have logged in ROSA I see only one group
[root@localhost ~]# id galkin
uid=10050(galkin) gid=10018(it) группы=10018(it)
I have attached ldap.conf
Version-Release number of selected component (if applicable):
Steps to Reproduce:
I have created test laboratory with LDAP server debian 6.0 and client ROSA 2012 LTS.
I have no problem with getting groups. The output of "id username" is equal.
test@lts86bgz ~]$ id
uid=1000(test) gid=1000(test) группы=1000(test),100(users),1003(test1group),1004(test2group)
Test is user from LDAP server and test, test1group and test1group are groups from LDAP server.
Created attachment 461 [details]
Listing of LDAP database from server ldapsearch - x -b dc=hit
I have attached listing of LDAP database from server
I tested Marathon with SLES SP11 and ldap, but without SSL/TLS encryption. Working good. I receive list of all of users from LDAP server and can login on it.
Connection to LDAP server I setup by ROSA drakauth utility. Do you use SSL/TLS on LDAP server?
(In reply to comment #4)
> I tested Marathon with SLES SP11 and ldap, but without SSL/TLS encryption.
> Working good. I receive list of all of users from LDAP server and can login
> on it.
> Connection to LDAP server I setup by ROSA drakauth utility. Do you use
> SSL/TLS on LDAP server?
User has told that SLES LDAP does not use SSL/TLS
I have sent working configuration files (from Eugene Budanov) to user and user has told that problem is exist with such configuration files.
That strange. Can user try to setup connection to LDAP server by drakauth utility, not by manual editing of configuration files?
(In reply to comment #7)
> That strange. Can user try to setup connection to LDAP server by drakauth
> utility, not by manual editing of configuration files?
User has told that one workstation hi has configured with drakauth and second has configured manually. Result is identical and both clients hav this error with listing of groups.
Which version of openLDAP used?
LDAP server, of course.
(In reply to comment #10)
> LDAP server, of course.
Please could You ask You question more clearly?
Cannot reproduce bug. Closed.