Brian
2009-Feb-03 17:50 UTC
[Puppet Users] Puppet can''t find LDAP group when configuring LDAP client.
I''m having a problem that''s very similar to http://projects.reductivelabs.com/issues/791 I''m setting up a node as a ldap client, and creating a couple of files with group owners that are groups that exist in LDAP. Puppet can''t find the group on the first run (when it also configures /etc/ ldap.conf and /etc/nsswitch.conf), but I can find it on subsequent run''s. I''m running 0.24.7 (and I looks like #791 was closed in 0.24.6). --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
Gary
2009-Feb-04 03:15 UTC
[Puppet Users] Re: Puppet can''t find LDAP group when configuring LDAP client.
Hello, I''ve also had the same issues. One possible way is changing nsswitch to lookup group info from LDAP. I''ve tried that but haven''t gotten it working quite right. The other way I''m using for now is to specify groups by number. Gary On Feb 4, 1:50 am, Brian <briandqu...@gmail.com> wrote:> I''m having a problem that''s very similar tohttp://projects.reductivelabs.com/issues/791 > > I''m setting up a node as a ldap client, and creating a couple of files > with group owners that are groups that exist in LDAP. Puppet can''t > find the group on the first run (when it also configures /etc/ > ldap.conf and /etc/nsswitch.conf), but I can find it on subsequent > run''s. > > I''m running 0.24.7 (and I looks like #791 was closed in 0.24.6).--~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
Brian
2009-Feb-04 12:24 UTC
[Puppet Users] Re: Puppet can''t find LDAP group when configuring LDAP client.
Hi Gary, I am changing nsswitch to query ldap, but it looks like puppet cache''s all the groups / users at the start of a pass hence it can''t see the changes. Specifying the group by number is a good idea, but it won''t work for me as the gid won''t be consistent (the same module connects to different ldap servers). Thanks for pointers. Brian On Feb 4, 3:15 am, Gary <garyy...@gmail.com> wrote:> Hello, > > I''ve also had the same issues. One possible way is changing nsswitch > to lookup group info from LDAP. I''ve tried that but haven''t gotten it > working quite right. > > The other way I''m using for now is to specify groups by number. > > Gary > > On Feb 4, 1:50 am, Brian <briandqu...@gmail.com> wrote: > > > I''m having a problem that''s very similar tohttp://projects.reductivelabs.com/issues/791 > > > I''m setting up a node as a ldap client, and creating a couple of files > > with group owners that are groups that exist in LDAP. Puppet can''t > > find the group on the first run (when it also configures /etc/ > > ldap.conf and /etc/nsswitch.conf), but I can find it on subsequent > > run''s. > > > I''m running 0.24.7 (and I looks like #791 was closed in 0.24.6). > >--~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---