[midPoint] IdM, OpenLDAP, Linux and error "groups: cannot find name for group ID 1105"

Parttimaa Jan jan.parttimaa at myy.haaga-helia.fi
Mon Nov 26 15:58:22 CET 2018 

Okay, I will try that. Thank you so much! 😊


Best Regards,

Jan Parttimaa


Jan Parttimaa

1602738,

Tietojenkäsittelyn koulutusohjelma,

Haaga-Helia ammattikorkeakoulu, Pasilan kampus

________________________________
Lähettäjä: midPoint <midpoint-bounces at lists.evolveum.com> käyttäjän Oleksandr Nekriach <o.nekriach at dynatech.lv> puolesta
Lähetetty: maanantai 26. marraskuuta 2018 11.07.01
Vastaanottaja: midPoint General Discussion
Aihe: Re: [midPoint] IdM, OpenLDAP, Linux and error "groups: cannot find name for group ID 1105"

Hi,
The user should also have gidNumber attribute in OpenLDAP with the same id (usually ) as his uid. In your case 1105

Best regards, Oleksandr

On Sun, 25 Nov 2018 at 11:53, Parttimaa Jan <jan.parttimaa at myy.haaga-helia.fi<mailto:jan.parttimaa at myy.haaga-helia.fi>> wrote:

Hi,



We use MidPoint 3.8 -IdM which is connected to OpenLDAP-server. We use OpenLDAP -server so we can manage Ubuntu users (sudo and non-sudo users).



We connect OpenLDAP to Idm using this example on the wiki<https://wiki.evolveum.com/display/midPoint/LDAP+PosixAccount+and+PosixGroup+Management>. Configuration and LDAP tree is done using the same example.



On IdM, we did this following group so we can make non-sudo users:



Basic

Name : basic_users

Display Name: Basic Users

Description: Basic Users from OpenLDAP to Ubuntu.

Subtype: basic_users

Identifier: basic_users

gidNumber: 1102



Assigments

LDAP Unix Group Metarole





Our test user is following:



Basic

Name: John Smith

Description: Basic user

Subtype: johnsmith

Full name: John Smith

Given name: John

Family Name: Smith

Additional Name: johnsmith

UnixUID number: 1105

Administrative status: Enabled

Password: <password is set>



Assigments

Name: Basic Users



After when test user is logged to Ubuntu via GUI, terminal will show this every time if that will be open:

"groups: cannot find name for group ID 1105"



"groups johnsmith" -command will show this:

johnsmith: groups: cannot find name for group ID 1105

1105 basic_users



There is no problem if we login via CLI.



Has anyone had the same problem? What should I do?



Best Regards,

Jan Parttimaa





Jan Parttimaa

1602738,

Tietojenkäsittelyn koulutusohjelma,

Haaga-Helia ammattikorkeakoulu, Pasilan kampus

_______________________________________________
midPoint mailing list
midPoint at lists.evolveum.com<mailto:midPoint at lists.evolveum.com>
http://lists.evolveum.com/mailman/listinfo/midpoint


--
Best regards,

[cid:o.nekriach at dynatech.lv1520941785292-7770]

Oleksandr Nekriach | Identity and access management engineer

Dynatech, Jeruzalemes iela 1, Rīga, LV-1010, Latvia<https://www.google.com/maps/place/DYNATECH/@56.9575205,24.1107235,17z/data=!3m1!4b1!4m5!3m4!1s0x46eecf5753e42351:0x23b120b9745cae62!8m2!3d56.9575205!4d24.1129122>

+37125314685<tel:+371%2025%20314%20685>
,
o.nekriach at dynatech.lv<mailto:o.nekriach at dynatech.lv>
|
www.dynatech.lv<http://www.dynatech.lv>


Stay connected:
[cid:o.nekriach at dynatech.lv1520941785292-7771]<https://www.facebook.com/DynatechLatvia/?ref=br_rs>
[cid:o.nekriach at dynatech.lv1520941785292-7772]<https://www.linkedin.com/company-beta/17893047/>


Confidentiality Notice: This message contains confidential information and is intended only for the named recipient(s). If you are not the addressee you may not copy, distribute or perform any other activities with this information. If you have received this transmission in error, please notify us by e-mail immediately. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20181126/7f6903f5/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7771
Type: image/png
Size: 790 bytes
Desc: o.nekriach at dynatech.lv1520941785292-7771
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20181126/7f6903f5/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7772
Type: image/png
Size: 786 bytes
Desc: o.nekriach at dynatech.lv1520941785292-7772
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20181126/7f6903f5/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7770
Type: image/png
Size: 4265 bytes
Desc: o.nekriach at dynatech.lv1520941785292-7770
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20181126/7f6903f5/attachment-0002.png>

More information about the midPoint mailing list