Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NAS-130709 / 25.04 / Fix LDAP status on failover #14480

Merged
merged 1 commit into from
Sep 10, 2024
Merged

NAS-130709 / 25.04 / Fix LDAP status on failover #14480

merged 1 commit into from
Sep 10, 2024

Conversation

anodos325
Copy link
Contributor

This fix addresses a few minor issues with directory services state recovery.

  1. Rather than simply failing directoryservices.setup if unhealthy, we should take recovery steps

  2. If for some reason SSSD fails to start triggering a health check failure we should go through etc.generate steps to make sure we have all required files written before trying to start it again.

  3. Always generate the nsswitch.conf after setting up directory services. This avoids possibilty of having SSSD / winbind running without them being present in nsswitch.conf on failover.

@bugclerk bugclerk changed the title Fix LDAP status on failover NAS-130709 / 25.04 / Fix LDAP status on failover Sep 10, 2024
@bugclerk
Copy link
Contributor

Jira URL: https://ixsystems.atlassian.net/browse/NAS-130709

mgrimesix
mgrimesix approved these changes Sep 10, 2024
View reviewed changes
Copy link
Contributor

@mgrimesix mgrimesix left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I see only a comment update. Approving anyway.

@anodos325
Fix LDAP status on failover
d9503e8 
This fix addresses a few minor issues with directory services
state recovery.

1. Rather than simply failing directoryservices.setup if
   unhealthy, we should take recovery steps

2. If for some reason SSSD fails to start triggering a health
   check failure we should go through etc.generate steps to
   make sure we have all required files written before trying
   to start it again.

3. Always generate the nsswitch.conf after setting up directory
   services. This avoids possibilty of having SSSD / winbind
   running without them being present in nsswitch.conf on failover.
@anodos325 anodos325 merged commit 59a5966 into master Sep 10, 2024
2 of 3 checks passed
@anodos325 anodos325 deleted the NAS-130709 branch September 10, 2024 20:45
@bugclerk bugclerk mentioned this pull request Sep 10, 2024
Merged
@bugclerk
Copy link
Contributor

This PR has been merged and conversations have been locked.
If you would like to discuss more about this issue please use our forums or raise a Jira ticket.

@truenas truenas locked as resolved and limited conversation to collaborators Sep 10, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@mgrimesix mgrimesix mgrimesix approved these changes

@bmeagherix bmeagherix Awaiting requested review from bmeagherix

Assignees
No one assigned
Labels
backport-24.10.1 backported no-time-tracked
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@anodos325 @bugclerk @mgrimesix