Project

General

Profile

Bug #21626

Empty value when retrieving members of "Domain Users"

Added by Daniel Lobato Garcia almost 3 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Category:
-
Target version:
Difficulty:
Triaged:
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1437578

Description of problem:
Via foreman-rake when retrieving information from "Domain Users" the value is empty although when retrieving information from one new group just created, the retrieved value is correct.

Version-Release number of selected component (if applicable):
6.2.8

How reproducible:
100%

Steps to Reproduce:
1. Login via foreman-rake console
2. source_now = AuthSourceLdap.find_by_id(3) # on my case, my connection is #3
3. conn = source_now.ldap_con
4. conn.valid_group?('Domain Users') # result here is true
5. conn.user_list('Domain Users') # the result here is empty (should see 4 users)

Actual results:
Should be possible see all members of "Domain Users", instead we see empty value.

Expected results:
See all users memberof "Domain Users"

Additional info:

Associated revisions

Revision 5dcb9bc6 (diff)
Added by Daniel Lobato Garcia almost 3 years ago

Fixes #21626 - "Domain Users" are not a valid AD group

'Domain Users' is a special group in AD. This group users' cannot
be queried through regular LDAP, it can only be seen on the Windows
AD UI.

This confuses people who think that could add this group but they
find that no users are found after adding this group.

This PR adds a warning when you try to do that, so that hopefully we
don't get more bug reports about this.

History

#1 Updated by The Foreman Bot almost 3 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/4998 added

#2 Updated by Tomer Brisker almost 3 years ago

  • Legacy Backlogs Release (now unused) set to 296
  • Subject changed from Empty value when retrieving members of "Domain Users" to Empty value when retrieving members of "Domain Users"

#3 Updated by Anonymous almost 3 years ago

  • % Done changed from 0 to 100
  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF