Issue #22778 has been updated by Stefan Schulte.
As I said, if you use `forcelocal` puppet will only parse `/etc/passwd` to check existance, so this should be what you need. The `forcelocal` parameter was added as a result of #7911. I was not able to find any statements of a "Jill Burrows" in this ticket or in #7911 so I don't know wether or not Jill refered to this new parameter when making the statements about `getent`. Please note that this is a public ticketing system and I am not a puppetlabs employee, so if you are referring to an internal discussion between you as a customer and puppetlabs staff, than this is will not be visible for me. ---------------------------------------- Feature #22778: Puppet user resource should read only from local databases https://projects.puppetlabs.com/issues/22778#change-98807 * Author: Zachary Stern * Status: Re-opened * Priority: Normal * Assignee: * Category: * Target version: * Affected Puppet version: * Keywords: customer * Branch: ---------------------------------------- Currently, the puppet user type uses `getent` to get information about user resources. The problem with this is that `getent` will also report information from LDAP and other remote user management services that are configured in nsswitch.conf, which are not actually managed by Puppet. This can cause Puppet to think a user is in a local group, or not in a local group, when the opposite is true. This is especially problematic since we user the useradd suite of commands to actually manage the settings, which of course affect local users/groups only. Puppet's user type should have some way of examining only local users and groups, to check if something is currently true/present/etc. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-bugs. For more options, visit https://groups.google.com/groups/opt_out.
