[Freeipa-users] Incorrect user information
cbulist at gmail.com
cbulist at gmail.com
Wed Sep 4 16:14:50 UTC 2013
Hi Jakub,
Thanks for your time and tips about sssd cache!
I did the test and let me explain what I got:
- After step 4 I can see dataExpireTimestamp to 1 for the user.
- After step 7 dataExpireTimestamp is back to 0 but the user data have
not changed.
The first line after the command ldbsearch is:
asq: Unable to register control with rootdse!
Is it a problem?
We are not using nscd service.
Please let me know if you need to do some other tests.
Thanks in advance!
On 09/04/2013 10:31 AM, Jakub Hrozek wrote:
> On Wed, Sep 04, 2013 at 10:18:13AM -0500, cbulist at gmail.com wrote:
>> Hi Chris,
>>
>> Thanks for your reply!....I forgot to mention that we tried sss_cache
>> (sss_cache -u user_id and sss_cache -U) in other RH6 ipa client and it
>> did not work...If we delete manually all /var/lib/sss/db we can see the
>> change but it is not going to be a nice solution.
> This sounds really strange. Can you run a little experiment for me?
>
> Can you install the ldb-tools package and then run:
>
> 1) getent passwd $username
> 2) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username
> 3) modify the entry
> 4) sss_cache -U
> 5) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username
> 6) getent passwd $username
> 7) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username
>
> after you run 2) you should see how the entry looks in the cache with
> the old attributes. After running 5) you should see the same attributes,
> except for dataExpireTimestamp that should be set to "1".
>
> After running 6), getent should yield the updated data and 7) should reflect
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
More information about the Freeipa-users
mailing list