LDAP group privilege mapping does not exist
Venkata_Chandrappa at phoenix.com
Fri Dec 4 21:01:09 AEDT 2020
Thanks for the response.
Could you help to share a basic LDAP server LDIF file with an user who is a member of a group with the privileges assigned, somethingthat you've already tested. I've also attached the LDIF file that I've used for my tests. I want to rule out LDAP configuration errors that I may be overlooking before I dwelve into the BMC side investigation.
From: Derick Montague [mailto:Derick.Montague at ibm.com]
Sent: Friday, December 4, 2020 6:55 AM
To: Venkata Chandrappa
Cc: openbmc at lists.ozlabs.org
Subject: Re: LDAP group privilege mapping does not exist
> Journal logs seem to indicate the mapping doesn’t exist, so I’m wondering if
> the role groups added in BMC web have been setup correctly.
I can't speak to that, but we had tested role groups when the view was created
and we were able to login and perform actions.
> One more thing to note is when I added the role group, there was a 404 response
> generated. However, on refreshing the page or navigating back to the page, the role
> group was added successfully.
That was fixed in https://gerrit.openbmc-project.xyz/c/openbmc/webui-vue/+/38618. It was
a UI issue, but the API request was successful as you noticed by refreshing the page.
More information about the openbmc