[Bug 827299] New: LDAP Users Take 1 min to login
https://bugzilla.novell.com/show_bug.cgi?id=827299 https://bugzilla.novell.com/show_bug.cgi?id=827299#c0 Summary: LDAP Users Take 1 min to login Classification: openSUSE Product: openSUSE Factory Version: 13.1 Milestone 2 Platform: 64bit OS/Version: openSUSE 12.3 Status: NEW Severity: Major Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: srivathsaacharya@gmail.com QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:21.0) Gecko/20100101 Firefox/21.0 Configured LDAP Server with server Certificate. Configured LDAP client with appropriate certificate Configured Samba server with LDAP as back end App armor configured for Samba (complain mode set for smbd, nmbd) Created LDAP users in "Users & Group Management" Computer Restarted. 1. LDAP User List not appearing in KDM 2. Manually typed LDAP users & Password: Login Error Message 3. After 1 min Manually typed LDAP User & Password : Logged in successfully. This Problem stared appearing in Open SuSE 12.3 after update. Reproducible: Always Steps to Reproduce: 1.Restart Computer 2.Check KDM Login screen 3.Manually Type LDAP user name & Password 4.Manually Type LDAP user name & Password after 1 Min. Actual Results: 1.- 2.LDAP user list not appearing 3.Not able to Login : Showing Login Error 4.Logging in Expected Results: 1.- 2.LDAP User list should appear 3.Should login upon giving proper credential 4.No need to wait till 1 min. In Yast System services(Run Level) sssd always shows No* even if you enable irrespective of how many times you enable it. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c
FeiXiang Zhang
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c1
Jiří Suchomel
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c2
Ralf Haferkamp
This Problem stared appearing in Open SuSE 12.3 after update. Which update?
Expected Results: 1.- 2.LDAP User list should appear This heavily depends on the sssd configuration. By default sssd is setup in a way that the getpwent() function will not return any users (because it can cause quite some load on the LDAP server). If you want user enumeration enabled you need to set "enumerate=TRUE" for the respecitive domain in sssd.conf. (You can also do that via YaST ldap-client->advanced configuartion->Enable user and group enumeration).
3.Should login upon giving proper credential 4.No need to wait till 1 min. Are you sure that the network is already up at the time you try to login first? What are you using to manage you Network? ifcfg files or NetworkManager?
In Yast System services(Run Level) sssd always shows No* even if you enable irrespective of how many times you enable it. That might be because yast2 runlevel only shows services using sysv init script correctly. sssd uses a systemd service file.
Please attach to this bug: * the output of "systemctl status sssd.service". * /etc/sssd/sssd.conf * Increase the debug_level of sssd by adding "debug_level = 0xFF" to the [sssd] and [domain/default] sections in sssd.conf, reboot the system, wait until login is possible and attach /var/log/messages and all files in /var/log/sssd/ -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c3
--- Comment #3 from Shrivathsa Acharya
Currently Using Open SuSE 13.1 M2. Had this problem from 12.3 since one of the updates involving sssd change. Sorry do not remember which update it is. Since 13.1 is still in development stage I thought it would be better to inform the bug.
2.LDAP User list should appear This heavily depends on the sssd configuration. By default sssd is setup in a way that the getpwent() function will not return any users (because it can cause quite some load on the LDAP server). If you want user enumeration enabled you need to set "enumerate=TRUE" for the respecitive domain in sssd.conf. (You can also do that via YaST ldap-client->advanced configuartion->Enable user and group enumeration).
Changes done and LDAP user list is appearing in login Screen. Thank you. But still 1 min Problem exists
3. Are you sure that the network is already up at the time you try to login first? What are you using to manage you Network? ifcfg files or NetworkManager?
I think network manager runs during boot time itself. I am using ifcfg
All Files Attached -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c4
Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c5
--- Comment #5 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c6
--- Comment #6 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c7
--- Comment #7 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c8
--- Comment #8 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c9
--- Comment #9 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c10
--- Comment #10 from Shrivathsa Acharya
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c11
Ralf Haferkamp
https://bugzilla.novell.com/show_bug.cgi?id=827299
https://bugzilla.novell.com/show_bug.cgi?id=827299#c12
Peter Varkoly
participants (1)
-
bugzilla_noreply@novell.com