https://bugzilla.novell.com/show_bug.cgi?id=815506 https://bugzilla.novell.com/show_bug.cgi?id=815506#c0 Summary: LDAP user/group search bases not configured when using SSSD Classification: openSUSE Product: openSUSE 12.3 Version: Final Platform: All OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: adaugherity@tamu.edu QAContact: jsrain@suse.com Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/536.28.10 (KHTML, like Gecko) Version/6.0.3 Safari/536.28.10 In previous YaST versions which supported nss_ldap (up through SLES 11 sp2 and openSUSE 12.1, apparently), it was possible for YaST to configure the user, group, and/or shadow search bases to a different value than the main LDAP search base. These options are no longer presented in YaST, despite SSSD supporting them (see ldap_user_search_base, ldap_group_search_base, etc. in sssd-ldap(5); there is no shadow search base option however). With an autoyast profile that configures these options, they *are* still applied when using nss_ldap (profile contains <sssd config:type="boolean">false</sssd>), but not when using SSSD. Because of this, it looks like this is a regression in the YaST LDAP module rather than autoyast. Reproducible: Always Steps to Reproduce: 1. Install with an autoyast profile configuring nss_base_group (etc.) under ldap. -OR- 1. Launch 'yast2 ldap'; choose "Advanced Configuration..." 2. Note the lack of "Naming Contexts" box containing User Map or Group Map. Actual Results: nss_base_group etc. settings in autoyast profile are ignored. YaST GUI for setting these is missing. Expected Results: Values should be mapped to sssd.conf settings: nss_base_passwd : ldap_user_search_base nss_base_group : ldap_group_search_base Applying the settings looks like a simple fix -- add a couple lines to WriteSSSDConfig() in modules/Ldap.ycp. Presenting the GUI may take a little more code, perhaps restoring some parts which were removed in 293b7ed. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.