sssd is not configured on storage nodes

Bug #2023399 reported by Andy
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
StarlingX
Fix Released
Low
Andy

Bug Description

Brief Description
-----------------
sssd is not configured on storage nodes thus ldap users can't ssh to storage nodes.

Severity
--------
Minor: System/Feature is usable with minor issue

Steps to Reproduce
------------------
On a system with storage nodes, login to storage nodes, check /etc/sssd directory, and run "systemctl status sssd".

Expected Behavior
-----------------
- /etc/sssd/sssd.conf exists.
- "systemctl status sssd" show sssd is running.

Actual Behavior
---------------
- /etc/sssd/sssd.conf doesn't exist.
- "systemctl status sssd" show sssd is not running.

Reproducibility
---------------
100% reproducible

System Configuration
--------------------
system with storage nodes.

Branch/Pull Time/Commit
-----------------------
STX master latest.

Last Pass
---------
Unknown

Timestamp/Logs
--------------
N/A

Test Activity
-------------
Developer Testing

Workaround
----------
N/A

Andy (andy.wrs)
Changed in starlingx:
assignee: nobody → Andy (andy.wrs)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to stx-puppet (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/starlingx/stx-puppet/+/885878

Changed in starlingx:
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to metal (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/starlingx/metal/+/885879

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to stx-puppet (master)

Reviewed: https://review.opendev.org/c/starlingx/stx-puppet/+/885878
Committed: https://opendev.org/starlingx/stx-puppet/commit/cc2e4d086e1a3b7b2958f3baacd5855bb12edc30
Submitter: "Zuul (22348)"
Branch: master

commit cc2e4d086e1a3b7b2958f3baacd5855bb12edc30
Author: Andy Ning <email address hidden>
Date: Mon Jun 12 09:06:22 2023 -0400

    Config sssd on storage node

    Currently sssd is not configured and running on storage nodes so
    ldap users can't login to storage nodes. This update makes sssd
    configured, and running on storage nodes (with a followup update).

    Test Plan:
    PASS: System with storage nodes deployment
    PASS: In storage nodes, verify that the following config file exist:
          /etc/sssd/sssd.conf

    Closes-Bug: 2023399
    Signed-off-by: Andy Ning <email address hidden>
    Change-Id: I383c101e0f99be93e9da528411c6fa1fd8cde4c6

Changed in starlingx:
status: In Progress → Fix Released
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to metal (master)

Reviewed: https://review.opendev.org/c/starlingx/metal/+/885879
Committed: https://opendev.org/starlingx/metal/commit/8da5f0fe19f8a999ce46c74d5448c678ed08afbd
Submitter: "Zuul (22348)"
Branch: master

commit 8da5f0fe19f8a999ce46c74d5448c678ed08afbd
Author: Andy Ning <email address hidden>
Date: Mon Jun 12 09:16:09 2023 -0400

    Create pmon config file for sssd to run on storage

    Currently sssd is not configured and running on storage nodes so
    ldap users can't login to storage nodes. This update creates sssd
    pmon config file so that sssd is running on storage nodes.

    Test Plan:
    PASS: System with storage nodes deployment
    PASS: In storage nodes, verify that the following config file exist:
          /etc/pmon.d/sssd.conf
    PASS: In storage nodes, verify that sssd is running by
          systemctl status sssd
    PASS: In storage nodes, verify ldap users are accessible by
          getent passwd

    Closes-Bug: 2023399
    Depends-On: https://review.opendev.org/c/starlingx/stx-puppet/+/885878
    Change-Id: I2e85873c3ddd18bab68365a58b5a8617eb1b2766
    Signed-off-by: Andy Ning <email address hidden>

Ghada Khalil (gkhalil)
Changed in starlingx:
importance: Undecided → Low
tags: added: stx.9.0 stx.config stx.security
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.