[SRU] Fix GPO support in Focal
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sssd (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Focal |
Fix Released
|
High
|
Unassigned |
Bug Description
[Description]
GPO support in focal doesn't follow MS ADTS spec and is not functional. It means that the default domain policy containing the security policy for example is not applied.
This SRU backports GPO patches from current stable version of SSSD.
[Test Case]
1. Install a machine with SSSD and join and AD domain where the controller is a Windows machine.
2. Add the machine to an OU of the domain
3. Boot the machine and login as a user of the domain.
4. Verify the content of /var/lib/
When it fails, this directory is empty
On success it is filled with the GPO downloaded from the domain controller.
It is also possible to check the journal for errors, there should be non related to GPO.
[Where problems could occur]
This code is limited to GPO on AD which is not working in focal. Worst case, it is still not functional.
Changed in sssd (Ubuntu): | |
status: | New → Fix Released |
importance: | Undecided → High |
Changed in sssd (Ubuntu Focal): | |
importance: | Undecided → High |
status: | New → Triaged |
summary: |
- [SRU] Fix GPO support on Focal + [SRU] Fix GPO support in Focal |
description: | updated |
description: | updated |
FYI, 2.3 and 2.4 are respectively in Groovy and Hirsute.