-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
4.12
-
Quality / Stability / Reliability
-
False
-
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
`ldap group sync can sync groups from ldap` fails with low frequency, but it often fails by itself which makes it a good target to identify a cause and fix.
[sig-auth][Feature:LDAP] LDAP IDP should authenticate against an ldap server [Suite:openshift/conformance/parallel]
[sig-auth][Feature:LDAP][Serial] ldap group sync can sync groups from ldap [Suite:openshift/conformance/serial]
Error message:
STEP: starting an openldap server Sep 8 12:38:43.516: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 create role scc-anyuid --verb=use --resource=scc --resource-name=anyuid' role.rbac.authorization.k8s.io/scc-anyuid created Sep 8 12:38:43.748: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 adm policy add-role-to-user scc-anyuid -z ldap --role-namespace e2e-test-ldap-group-sync-wtwnc' role.rbac.authorization.k8s.io/scc-anyuid added: "ldap" Sep 8 12:38:44.239: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 create role scc-priv --verb=use --resource=scc --resource-name=privileged' role.rbac.authorization.k8s.io/scc-priv created Sep 8 12:38:44.468: INFO: Running 'oc --namespace=e2e-test-ldap-group-sync-wtwnc --kubeconfig=/tmp/kubeconfig-4272906302 adm policy add-role-to-user scc-priv -z ldap --role-namespace e2e-test-ldap-group-sync-wtwnc' role.rbac.authorization.k8s.io/scc-priv added: "ldap" Sep 8 12:38:56.317: INFO: pod "runonce-ldapsearch-pod" errored trying to run the command: ldap_start_tls: Can't contact LDAP server (-1) ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)