[Freeipa-users] IPAv3.0 WebUI User Population
Simo Sorce
simo at redhat.com
Wed Aug 3 18:16:54 UTC 2016
On Wed, 2016-08-03 at 13:03 -0500, Brad Cesarone wrote:
> Does it just need the objectclass? Does it care if there are any
> values assigned to the attributes underneath the posixaccount object
> class?
The posixAccount, as per schema, requires:
- cn
- uid
- uidNumber
- gidNumber
- homeDirectory
Note also that your warranty is void if you start adding random objects
in the FreeIPA cn=accounts container :-)
Simo.
>
>
>
> -----Martin Basti <mbasti at redhat.com> wrote: -----
> To: Brad Cesarone <Brad.Cesarone at raytheon.com>
> From: Martin Basti <mbasti at redhat.com>
> Date: 08/03/2016 01:01PM
> Cc: freeipa-users at redhat.com
> Subject: Re: [Freeipa-users] IPAv3.0 WebUI User Population
>
>
>
>
>
>
> On 03.08.2016 19:58, Brad Cesarone wrote:
>
>
> Hi Martin
>
> I've been playing with adding objectclasses to the non-posix user. I have so far added inetuser, ipaobject, ipasshuser. He started with top, person, organizationalPerson, inetOrgPerson and two custom classes.
>
> You need this 'posixaccount' according the source code of IPA 3.3.0
>
> Martin
>
>
> Nothing came up in /var/log/dirsrv/slapd-*/access when running the search but in the /var/log/httpd/error_log there is the following entry: user_find{u'<user_name>', whoami=False, all=False, raw=False, version='2.49', no_members=False, pkey_only=False}: SUCCESS
>
> The command outputted
> ------------------
> 0 users matched
> -----------------
> ----------------------------
> Number of Entries Returned 0
> ----------------------------
>
> Thanks
> -Brad
>
> -----Martin Basti <mbasti at redhat.com> wrote: -----
> To: Brad Cesarone <Brad.Cesarone at raytheon.com>, freeipa-users at redhat.com
> From: Martin Basti <mbasti at redhat.com>
> Date: 08/03/2016 12:44PM
> Subject: Re: [Freeipa-users] IPAv3.0 WebUI User Population
>
>
>
>
>
>
> On 03.08.2016 18:38, Brad Cesarone wrote:
>
> Hello All
>
> I'm trying to figure out how the webUI populates the user page. I have a mix of posix users and non-posix users.
> The non-posix users were added using an LDIF and imported fine. I am able to view them using ipa user-show, ldapsearch, and if I navigate to them using the user details URL they show up. Groups are also able to find the non-posix users and verify membership. I am just unable to use ipa user-find or see them in the users page.
>
> Hello, I'm afraid you may miss an objectclass in imported users.
>
> Can you please run ipa user-find, and provide SRCH filter from /var/log/dirsrv/slapd-*/access (I hope this is the right path on RHEL6.8)
>
> Then please provide all objectclasses that have a random imported user
>
> regards
> Martin
>
>
> I apologize if this has already been answered, I tried google-fu and it didn't return anything useful.
> Using IPA 3.0 on Redhat 6.8
>
> Thanks
> -Brad
>
>
> -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-users
mailing list