Project

General

Profile

Actions

Bug #31697

open

Attributes of LDAP user are not updated upon first login when onthefly is disabled

Added by Ondřej Ezr about 3 years ago. Updated about 3 years ago.

Status:
New
Priority:
Low
Assignee:
-
Category:
Authentication
Target version:
-
Difficulty:
Triaged:
No
Fixed in Releases:
Found in Releases:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1670397

Description of problem:
When you do not have onthefly register enabled you should have created the user manually as per our doc [0]:
~~
If you did not select Onthefly Register check box, see Section 5.1.1, “Creating a User” to create user accounts manually.
~~

So I guess the following workflow might apply:
1) LDAP auth has onthefly disabled
2) Created the LDAP user manually on Satellite
3) Expect the attributes to be updated but they are not when logging in

The following workflow works fine:
1) LDAP auth has onthefly enabled
2) Attributes are correctly populated upon login with LDAP user

Version-Release number of selected component (if applicable):
satellite-6.4.1-1.el7sat.noarch

How reproducible:
100%

Steps to Reproduce:
Note for IPA:
1) LDAP auth has onthefly disabled
2) Created the LDAP user manually on Satellite
3) Expect the attributes to be updated but they are not when logging in with the created LDAP user

Note that for Active Directory the following applies:
1) disabled "Onthefly Register" on LDAP settings and configure Attr Login/Attr Firstname/Attr Lastname/Attr Mail/Photo attribute
2) administer > user, we predefine an ad user for example -> tester1 and make it Authorized by AD ( we did not put the first name/last name/mail)
3) we try to login by using tester1, user able to log in and can retrieve photo from AD, but still ask the first name/last name/mail.

Actual results:
No attributes are updated for IPA
photo attribute is updated for AD but nothing else

Expected results:
All attributes to be updated upon successful login

Additional info:

Actions #1

Updated by Ondřej Ezr about 3 years ago

  • Subject changed from Attributes of LDAP user are not updated upon first login when onthefly is disabled to Attributes of LDAP user are not updated upon first login when onthefly is disabled
  • Assignee deleted (Marek Hulán)
Actions

Also available in: Atom PDF