<html> <head> <meta content="text/html; charset=windows-1252" http-equiv="Content-Type"> </head> <body bgcolor="#FFFFFF" text="#000000"> <p><br> </p> <br> <div class="moz-cite-prefix">On 03.08.2016 20:03, Brad Cesarone wrote:<br> </div> <blockquote cite="mid:OF4C4CC36A.E05C8640-ON86258004.0063352F-86258004.00633533@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"> <div>Does it just need the objectclass? Does it care if there are any values assigned to the attributes underneath the posixaccount object class?<br> <br> </div> <br> </font></blockquote> All must attributes are required.<br> <br> objectClasses: ( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Standard LDAP objectclass' SUP top AUXILIARY MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ description ) X-ORIGIN 'RFC 2307' )<br> <br> Martin<br> <br> <blockquote cite="mid:OF4C4CC36A.E05C8640-ON86258004.0063352F-86258004.00633533@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"><br> <font color="#990099">-----Martin Basti <a class="moz-txt-link-rfc2396E" href="mailto:mbasti@redhat.com"><mbasti@redhat.com></a> wrote: -----</font> <div style="PADDING-LEFT: 5px"> <div style="PADDING-LEFT: 5px; BORDER-LEFT: black 2px solid; PADDING-RIGHT: 0px">To: Brad Cesarone <a class="moz-txt-link-rfc2396E" href="mailto:Brad.Cesarone@raytheon.com"><Brad.Cesarone@raytheon.com></a><br> From: Martin Basti <a class="moz-txt-link-rfc2396E" href="mailto:mbasti@redhat.com"><mbasti@redhat.com></a><br> Date: 08/03/2016 01:01PM<br> Cc: <a class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a><br> Subject: Re: [Freeipa-users] IPAv3.0 WebUI User Population<br> <br>  <p><br> </p> <br> <div class="moz-cite-prefix">On 03.08.2016 19:58, Brad Cesarone wrote:<br> </div> <blockquote cite="mid:OFE7DDDE6B.304E9D59-ON86258004.0062BF44-86258004.0062BF4B@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"> <div><br> Hi Martin</div> <div> </div> <div>I've been playing with adding objectclasses to the non-posix user. I have so far added inetuser, ipaobject, ipasshuser. He started with top, person, organizationalPerson, inetOrgPerson and two custom classes. </div> </font></blockquote> <br> <font size="2"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif">You need this 'posixaccount' according the source code of IPA 3.3.0<br> <br> Martin<br> </font></font> <blockquote cite="mid:OFE7DDDE6B.304E9D59-ON86258004.0062BF44-86258004.0062BF4B@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"> <div> </div> <div>Nothing came up in /var/log/dirsrv/slapd-*/access when running the search but in the /var/log/httpd/error_log there is the following entry: user_find{u'<user_name>', whoami=False, all=False, raw=False, version='2.49', no_members=False, pkey_only=False}: SUCCESS</div> <div> </div> <div>The command outputted </div> <div>------------------</div> <div>0 users matched</div> <div>-----------------</div> <div>----------------------------</div> <div>Number of Entries Returned 0</div> <div>----------------------------</div> <div> </div> <div>Thanks</div> <div>-Brad<br> <br> <font color="#990099">-----Martin Basti <a moz-do-not-send="true" class="moz-txt-link-rfc2396E" href="mailto:mbasti@redhat.com"><mbasti@redhat.com></a> wrote: -----</font> </div> <div style="PADDING-LEFT: 5px"> <div style="PADDING-LEFT: 5px; BORDER-LEFT: black 2px solid; PADDING-RIGHT: 0px">To: Brad Cesarone <a moz-do-not-send="true" class="moz-txt-link-rfc2396E" href="mailto:Brad.Cesarone@raytheon.com"><Brad.Cesarone@raytheon.com></a>, <a moz-do-not-send="true" class="moz-txt-link-abbreviated" href="mailto:freeipa-users@redhat.com">freeipa-users@redhat.com</a><br> From: Martin Basti <a moz-do-not-send="true" class="moz-txt-link-rfc2396E" href="mailto:mbasti@redhat.com"><mbasti@redhat.com></a><br> Date: 08/03/2016 12:44PM<br> Subject: Re: [Freeipa-users] IPAv3.0 WebUI User Population<br> <br>  <p><br> </p> <br> <div class="moz-cite-prefix">On 03.08.2016 18:38, Brad Cesarone wrote:<br> </div> <blockquote cite="mid:OFCA3A7515.D973346F-ON86258004.005B7148-86258004.005B714F@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"> <div>Hello All</div> <div> </div> <div>I'm trying to figure out how the webUI populates the user page. I have a mix of posix users and non-posix users.</div> <div>The non-posix users were added using an LDIF and imported fine. I am able to view them using ipa user-show, ldapsearch, and if I navigate to them using the user details URL they show up. Groups are also able to find the non-posix users and verify membership. I am just unable to use ipa user-find or see them in the users page.</div> </font></blockquote> <br> <font size="2"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif">Hello, I'm afraid you may miss an objectclass in imported users.<br> <br> Can you please run ipa user-find, and provide SRCH filter from /var/log/dirsrv/slapd-*/access (I hope this is the right path on RHEL6.8)<br> <br> Then please provide all objectclasses that have a random imported user<br> <br> regards<br> Martin<br> </font></font> <blockquote cite="mid:OFCA3A7515.D973346F-ON86258004.005B7148-86258004.005B714F@raytheon.com" type="cite"><font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"> <div> </div> <div>I apologize if this has already been answered, I tried google-fu and it didn't return anything useful.</div> <div>Using IPA 3.0 on Redhat 6.8</div> <div> </div> <div>Thanks</div> <div>-Brad</div> </font><br> <fieldset class="mimeAttachmentHeader"></fieldset> <br> </blockquote> <br> </div> </div> </font></blockquote> <br> </div> </div> </font> </blockquote> <br> </body> </html>