Public bug reported:
Binary package hint: gq
1. set up a ldap-server
2. set up a kdc using ldap for his backend
3. create some users
4. add kerberos information to these users (ank -x
'dn=Username,ou=Users,dc=domain,dc=root' Username)
5. command listprinc will work for all users
6. fire up gq
7. edit one of the users with kerberos information, for example: change
uidNumber or gidNumber
8. save the changed user
9. try again to list all principals from kadmin. This time it may fail with
"get_principals: Invalid argument while retrieving list"
For this one particular user all other commands will fail also:
delprinc
cpw
[...]
with the very same error message! The user in question will work
further: he can authenticate, login, but he can not change his password
any more. The isue can be resolved by exporting the user to an ldif,
removeing all items starting with "krb*", deleting the user from ldap,
creating the user with the saved information, then adding kerberos
information with kadmin again.
gq seems to replace all items, but does not keep them as they where,
breaking kerberos if any non kerberos informations are changed and
stored.
ProblemType: Bug
DistroRelease: Ubuntu 10.10
Package: gq 1.3.4-1
Uname: Linux 2.6.38.2 x86_64
Architecture: amd64
Date: Fri Apr 15 13:37:59 2011
ProcEnviron:
LANGUAGE=de_DE:en
PATH=(custom, user)
LANG=de_DE.UTF-8
SHELL=/bin/bash
SourcePackage: gq
** Affects: gq (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug maverick
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/761673
Title:
editing ldap-accounts with kerberos information breaks kerberos
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
