[Freeipa-devel] Adding groups broken?
Simo Sorce
ssorce at redhat.com
Sun Oct 19 22:10:29 UTC 2008
On Sat, 2008-10-18 at 11:15 -0400, W. Michael Petullo wrote:
> I am having trouble adding groups using ipa-server-1.1.0-4.fc9.i386.
> I added a group, mygroup, using the web interface. However, my user
> is not a member of the group when I log in.
>
> "getent group" says:
>
> mock:x:490:user
> [...]
> mygroup:*:1100:user
>
> "groups" reports that I am a member of mock, but not mygroup.
>
> Why is '*' used for IPA groups, while 'x' is used by /etc/group?
IT does not matter, the password field for group entries is totally
ignored today.
> If I manually add mygroup to /etc/group and use 'x', then my user
> gets added to mygroup.
If you use nscd (as we do) you might not see a change up to one hour
after you made it.
IIRC You may run 'service nscd reload' to flush the caches.
Simo.
More information about the Freeipa-devel
mailing list