Bug #21626
Empty value when retrieving members of "Domain Users"
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1437578
Description of problem:
Via foreman-rake when retrieving information from "Domain Users" the value is empty although when retrieving information from one new group just created, the retrieved value is correct.
Version-Release number of selected component (if applicable):
6.2.8
How reproducible:
100%
Steps to Reproduce:
1. Login via foreman-rake console
2. source_now = AuthSourceLdap.find_by_id(3) # on my case, my connection is #3
3. conn = source_now.ldap_con
4. conn.valid_group?('Domain Users') # result here is true
5. conn.user_list('Domain Users') # the result here is empty (should see 4 users)
Actual results:
Should be possible see all members of "Domain Users", instead we see empty value.
Expected results:
See all users memberof "Domain Users"
Additional info:
Associated revisions
History
#1
Updated by The Foreman Bot over 4 years ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/4998 added
#2
Updated by Tomer Brisker over 4 years ago
- Legacy Backlogs Release (now unused) set to 296
- Subject changed from Empty value when retrieving members of "Domain Users" to Empty value when retrieving members of "Domain Users"
#3
Updated by Anonymous over 4 years ago
- % Done changed from 0 to 100
- Status changed from Ready For Testing to Closed
Applied in changeset 5dcb9bc63397ea0770fd283a1d38be06591de7df.
Fixes #21626 - "Domain Users" are not a valid AD group
'Domain Users' is a special group in AD. This group users' cannot
be queried through regular LDAP, it can only be seen on the Windows
AD UI.
This confuses people who think that could add this group but they
find that no users are found after adding this group.
This PR adds a warning when you try to do that, so that hopefully we
don't get more bug reports about this.