Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-7918

puppet fails to change user group membership if directory group names have spaces

    Details

    • Type: Bug
    • Status: Accepted
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: PUP 4.8.1
    • Fix Version/s: None
    • Component/s: None
    • Environment:

      Oracle Linux 5.11
      PE 2016.5.1

    • Template:
      PUP Bug Template
    • Team:
      Platform OS
    • Method Found:
      Customer Feedback
    • CS Priority:
      Normal
    • CS Frequency:
      2 - 5-25% of Customers
    • CS Severity:
      3 - Serious
    • CS Business Value:
      4 - $$$$$
    • CS Impact:
      Hide
      Our largest customers are going to most likely have existing AD implementations and it is not uncommon at all for there to be duplication of local groups and AD groups. It is also not uncommon for AD entities to have spaces in their names. We need to work correctly in that environment.
      Show
      Our largest customers are going to most likely have existing AD implementations and it is not uncommon at all for there to be duplication of local groups and AD groups. It is also not uncommon for AD entities to have spaces in their names. We need to work correctly in that environment.
    • QA Risk Assessment:
      Needs Assessment

      Description

      When doing a puppet run to create a local group dba but is also in Active Directory, Puppet is unable to handle AD groups with embedded blank spaces.

      class linux_base::base_groups { 
        group { 'dba': 
          gid => 123, 
          forcelocal => true, 
        } 
      }
      

      root # puppet agent -t 
      Info: Using configured environment 'lab' 
      Info: Retrieving pluginfacts 
      Info: Retrieving plugin 
      Info: Loading facts 
      Info: Caching catalog for server.example.com 
      Info: Applying configuration version '1234567890' 
      Error: Invalid value Foo,Bar Baz,dba: Groups must be comma-separated 
      Error: /Stage[main]/Linux_base::Base_users/User[oracle]/groups: change from dba,Foo,Bar Baz,dba failed: Invalid value Foo,Bar Baz,dba: Groups must be comma-separated
      

      Defined in AD is a group named "Bar Baz", with an embedded blank space.

      Groups defined to user "oracle" as seen by running the operating systems "groups" command:

      root # su - oracle 
      oracle> groups 
      dba Foo Bar Baz
      

      An issue on Oracle Linux 5.11.
      Not an issue with Oracle Linux 6.x, 7.x.

        Attachments

          Activity

            jsd-sla-details-panel

              People

              • Assignee:
                Unassigned
                Reporter:
                tom.kishel Thomas Kishel
              • Votes:
                1 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: