Hello everybody,

Since the last version of FreeIPA I cannot add or delete any ssh user keys for synced users. Neither on commandline nor web ui.


It works flawless with local created users. But it does not work with users created by winsync. See error message below.

If I add the ntUser objectClass manually to a local user, it also doesn't work any more. Maybe this is somehow the origin of the bug?
Are there any other logs I could check out?


Thanks,
Jens


ipa -vv user-mod name --sshpubkey="ssh-rsa foobar name@host"
ipa: INFO: trying https://ipa.cs.ucc.md/ipa/session/json
ipa: INFO: Request: {
    "id": 0,
    "method": "ping",
    "params": [
        [],
        {}
    ]
}
ipa: INFO: Response: {
    "error": null,
    "id": 0,
    "principal": "ad...@cs.ucc.md",
    "result": {
        "messages": [
            {
                "code": 13001,
"message": "API Version number was not sent, forward compatibility not guaranteed. Assuming server's API version, 2.156",
                "name": "VersionMissing",
                "type": "warning"
            }
        ],
        "summary": "IPA server version 4.2.3. API version 2.156"
    },
    "version": "4.2.3"
}
ipa: INFO: Forwarding 'user_mod' to json server 'https://ipa.cs.ucc.md/ipa/session/json'
ipa: INFO: Request: {
    "id": 0,
    "method": "user_mod",
    "params": [
        [
            "name"
        ],
        {
            "all": false,
            "ipasshpubkey": [
                "ssh-rsa foobar name@host"
            ],
            "no_members": false,
            "random": false,
            "raw": false,
            "rights": false,
            "version": "2.156"
        }
    ]
}
ipa: INFO: Response: {
    "error": {
        "code": 4203,
        "message": "Type or value exists: ",
        "name": "DatabaseError"
    },
    "id": 0,
    "principal": "ad...@cs.ucc.md",
    "result": null,
    "version": "4.2.3"
}
ipa: ERROR: Type or value exists:

--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

Reply via email to