Re: [keystone] [stein] user_enabled_emulation config problem

Hello all, I investigated the case. My issue arises from group_members_are_ids ignored for user_enabled_emulation_use_group_config. I reported a bug in keystone: https://bugs.launchpad.net/keystone/+bug/1839133 and will submit a patch. Hopefully it helps someone else as well. Kind regards, Radek sob., 3 sie 2019 o 20:56 Radosław Piliszek <radoslaw.piliszek@gmail.com> napisał(a):

Hello all,

I have an issue using user_enabled_emulation with my LDAP solution.

I set: user_tree_dn = ou=Users,o=UCO user_objectclass = inetOrgPerson user_id_attribute = uid user_name_attribute = uid user_enabled_emulation = true user_enabled_emulation_dn = cn=Users,ou=Groups,o=UCO user_enabled_emulation_use_group_config = true group_tree_dn = ou=Groups,o=UCO group_objectclass = posixGroup group_id_attribute = cn group_name_attribute = cn group_member_attribute = memberUid group_members_are_ids = true

Keystone properly lists members of the Users group but they all remain disabled. Did I misinterpret something?

Kind regards, Radek