On Mon, 22 May 2023, Andreas Binapfl via FreeIPA-users wrote:
Still some problems with our setup:
ERR - find_sid_for_ldap_entry - [file ipa_sidgen_common.c, line 521]: Cannot
convert Posix ID [1576] into an unused SID
Am i right that error occurs because 1576 is outside of our
DOMAIN.LOCAL_new_range 1600-3600?
Is it possible to adjust the first posixID of that range to 1500?
Or can i delete the range and recreate it without causing more ruckus?
Any other clean way to fix that problem?
You can modify first POSIX ID via ldapmodify. IPA tools prevent you
doing so because it might affect ID mapping configuration on multiple
systems.
Alternatively, you can add another range to cover those IDs.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
