← Back to team overview

yahoo-eng-team team mailing list archive

[Bug 1512744] [NEW] Unable to retrieve LDAP domain user and group list on Horizon.

 

Public bug reported:

I'm using openstack 7.0 with LDAP plugin " ldap-1.0-1.0.0-1.noarch.rpm"

I need add LDAP user on new project on keystone.tld domain. Project
creation on this domain working fine, but when i tryed to add  LDAP
users on this project i see an error:  "Unable to retrieve LDAP domain
user/group list "

https://screencloud.net/v/xS09

I can not use a user unless add him to the project

On version 1.0.0 LDAP plugin this working fine, without critical
problems.

When i use CLI, i see erorr:
openstack --os-auth-url http://172.16.0.3:5000/v3 --os-username Administrator --os-password Pass1234 --os-user-domain-name keystone.tld  user list
ERROR: openstack Expecting to find domain in project - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error. (HTTP 400) (Request-ID: req-8f456d5d-afba-4289-957a-4eed91ee75cc)

Log message on FuelUI (get all avaliable users on project):
GET http://192.168.0.2:35357/v3/users?domain_id=19bca8582eae47b891e6b9d45fd6225b&default_project_id=ae96f8daec6c405a9e3b5d509a39db83 HTTP/1.1" 500 143 keystoneclient.session: DEBUG: RESP: keystoneclient.session: DEBUG: Request returned failure status: 500

Mirantis LDAP server  172.16.57.146 working fine.

My LDAP settings:

[ldap]
suffix=dc=keystone,dc=tld
query_scope=sub
user_id_attribute=cn
user=cn=Administrator,cn=Users,dc=keystone,dc=tld
user_objectclass=person
user_name_attribute=cn
password=Pass1234
user_allow_delete=False
user_tree_dn=dc=keystone,dc=tld
user_pass_attribute=userPassword
user_enabled_attribute=enabled
user_allow_create=False
user_allow_update=False
user_filter=
url=ldap://172.16.57.146

** Affects: keystone
     Importance: Undecided
         Status: New


** Tags: keystoneclient ldap

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1512744

Title:
   Unable to retrieve LDAP domain user and group list on Horizon.

Status in OpenStack Identity (keystone):
  New

Bug description:
  I'm using openstack 7.0 with LDAP plugin "
  ldap-1.0-1.0.0-1.noarch.rpm"

  I need add LDAP user on new project on keystone.tld domain. Project
  creation on this domain working fine, but when i tryed to add  LDAP
  users on this project i see an error:  "Unable to retrieve LDAP domain
  user/group list "

  https://screencloud.net/v/xS09

  I can not use a user unless add him to the project

  On version 1.0.0 LDAP plugin this working fine, without critical
  problems.

  When i use CLI, i see erorr:
  openstack --os-auth-url http://172.16.0.3:5000/v3 --os-username Administrator --os-password Pass1234 --os-user-domain-name keystone.tld  user list
  ERROR: openstack Expecting to find domain in project - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error. (HTTP 400) (Request-ID: req-8f456d5d-afba-4289-957a-4eed91ee75cc)

  Log message on FuelUI (get all avaliable users on project):
  GET http://192.168.0.2:35357/v3/users?domain_id=19bca8582eae47b891e6b9d45fd6225b&default_project_id=ae96f8daec6c405a9e3b5d509a39db83 HTTP/1.1" 500 143 keystoneclient.session: DEBUG: RESP: keystoneclient.session: DEBUG: Request returned failure status: 500

  Mirantis LDAP server  172.16.57.146 working fine.

  My LDAP settings:

  [ldap]
  suffix=dc=keystone,dc=tld
  query_scope=sub
  user_id_attribute=cn
  user=cn=Administrator,cn=Users,dc=keystone,dc=tld
  user_objectclass=person
  user_name_attribute=cn
  password=Pass1234
  user_allow_delete=False
  user_tree_dn=dc=keystone,dc=tld
  user_pass_attribute=userPassword
  user_enabled_attribute=enabled
  user_allow_create=False
  user_allow_update=False
  user_filter=
  url=ldap://172.16.57.146

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1512744/+subscriptions


Follow ups