[keystone] [stein] user_enabled_emulation config problem
Radosław Piliszek
radoslaw.piliszek at gmail.com
Tue Aug 6 11:12:15 UTC 2019
Hello all,
I investigated the case.
My issue arises from group_members_are_ids ignored for
user_enabled_emulation_use_group_config.
I reported a bug in keystone:
https://bugs.launchpad.net/keystone/+bug/1839133
and will submit a patch.
Hopefully it helps someone else as well.
Kind regards,
Radek
sob., 3 sie 2019 o 20:56 Radosław Piliszek <radoslaw.piliszek at gmail.com>
napisał(a):
> Hello all,
>
> I have an issue using user_enabled_emulation with my LDAP solution.
>
> I set:
> user_tree_dn = ou=Users,o=UCO
> user_objectclass = inetOrgPerson
> user_id_attribute = uid
> user_name_attribute = uid
> user_enabled_emulation = true
> user_enabled_emulation_dn = cn=Users,ou=Groups,o=UCO
> user_enabled_emulation_use_group_config = true
> group_tree_dn = ou=Groups,o=UCO
> group_objectclass = posixGroup
> group_id_attribute = cn
> group_name_attribute = cn
> group_member_attribute = memberUid
> group_members_are_ids = true
>
> Keystone properly lists members of the Users group but they all remain
> disabled.
> Did I misinterpret something?
>
> Kind regards,
> Radek
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20190806/23c592f1/attachment.html>
More information about the openstack-discuss
mailing list