Ask Your Question
0

IPA Users unable to login [closed]

asked 2019-05-24 14:40:48 -0600

Ajay Behera gravatar image

Problem Synopsis: Unable to login to dashboard using a LDAP user. Keystone was integrated with idm/IPA server.

Log message(/var/log/keystone/keystone.log): Showing "USER DISABLED"

2019-05-25 00:55:45.310 15128 INFO keystone.common.wsgi [req-48e48751-9e72-4c83-a8b5-6f3edfd4a379 - - - - -] POST http://192.168.1.205:5000/v3/auth/tokens 2019-05-25 00:55:45.438 15128 WARNING keystone.auth.plugins.core [req-48e48751-9e72-4c83-a8b5-6f3edfd4a379 - - - - -] User is disabled: f47af190eaf9f582ddd8a9f249c69977a62b89a94592931db5555d758623b6ae: AssertionError: User is disabled: f47af190eaf9f582ddd8a9f249c69977a62b89a94592931db5555d758623b6ae

one thing I noticed that the user looks not enabled.

[root@packstack ~(keystone_admin)]# openstack user show ajay --domain idm
+---------------------+------------------------------------------------------------------+ | Field | Value | +---------------------+------------------------------------------------------------------+ | domain_id | 82866bf5f2664dbeb31c856de46dd6b5 | | email | | | enabled | False | | id | f47af190eaf9f582ddd8a9f249c69977a62b89a94592931db5555d758623b6ae | | name | ajay | | options | {} | | password_expires_at | None | +---------------------+------------------------------------------------------------------+

Any hint or solution will be appreciated. Thank You .

edit retag flag offensive reopen merge delete

Closed for the following reason the question is answered, right answer was accepted by Bernd Bausch
close date 2019-05-27 19:50:00.455594

1 answer

Sort by ยป oldest newest most voted
0

answered 2019-05-26 10:06:29 -0600

Ajay Behera gravatar image

My problem has been resolved after looking at the "https://www.rdoproject.org/documentation/keystone-integration-with-idm/".

The note I got from the above url was "The enabled_users and enabled_tenants groups are used to emulate the "enabled" attribute, & Red Hat IdM's default schema does not have it". Customer has to add the schema for enabled_users to the database of idM.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2019-05-24 14:40:48 -0600

Seen: 40 times

Last updated: May 24