Project

General

Custom queries

Profile

Actions
Copy link

Bug #2552

closed

(ex PT/ Technique) User Management: If a user is defined to be checked and with password defined too, the password of this user will be redefined

Added by Nicolas PERRON almost 13 years ago. Updated about 10 years ago.

Status:
Released
Priority:
1 (highest)
Assignee:
-
Category:
Techniques
Target version:
2.3.10
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
Name check:
Fix check:
Regression:

Description

A user with this properties:
  • Login name for this account: userQA1
  • Password for this account (optional): somePassword
  • Policy to apply on this account: Check only (account should exist) or Check only (account should not exist)

will redefine its password (only if he exist):

[root@centos-6-64 ~]# grep 'userQA1' /etc/passwd
userQA1:x:6001:6001::/home/userQA1:/bin/bash
[root@centos-6-64 ~]# /var/rudder/cfengine-community/bin/cf-agent -KI -b check_usergroup_user_parameters
 !! Duplicate selection of value for variable "execRun" in scope g
 !! Rule from /var/rudder/cfengine-community/inputs/common/1.0/site.cf at/before line 58
 !! Duplicate selection of value for variable "execRun" in scope g
 !! Rule from /var/rudder/cfengine-community/inputs/common/1.0/site.cf at/before line 58
 >> Using command line specified bundlesequence
 -> Executing '/bin/echo -e "somePassword\nsomePassword" | /usr/bin/passwd userQA1' ...(timeout=-678,owner=-1,group=-1)
Q: ".../bin/echo -e "s": New password: Retype new password: Changing password for user userQA1.
Q: ".../bin/echo -e "s": passwd: all authentication tokens updated successfully.
I: Last 2 quoted lines were generated by promiser "/bin/echo -e "somePassword\nsomePassword" | /usr/bin/passwd userQA1" 
 -> Completed execution of /bin/echo -e "somePassword\nsomePassword" | /usr/bin/passwd userQA1
R: @@userGroupManagement@@result_success@@50d28030-4e21-4c47-8b9b-fe0c4b39e405@@b887d02f-12ea-4dc9-96d5-563fc4b5bfbc@@28@@Users@@userQA1@@2012-06-07 17:53:05+02:00##06da3556-5204-4bd7-b3b0-fa5e7bcfbbea@#The user userQA1 ( Without any defined full name ) is present on the system, which is in conformance with the presence policy
[root@centos-6-64 ~]#

the same with a user which doesn't exist: userQA2

[root@centos-6-64 ~]# grep 'userQA2' /etc/passwd
[root@centos-6-64 ~]# /var/rudder/cfengine-community/bin/cf-agent -KI -b check_usergroup_user_parameters
 !! Duplicate selection of value for variable "execRun" in scope g
 !! Rule from /var/rudder/cfengine-community/inputs/common/1.0/site.cf at/before line 58
 !! Duplicate selection of value for variable "execRun" in scope g
 !! Rule from /var/rudder/cfengine-community/inputs/common/1.0/site.cf at/before line 58
 >> Using command line specified bundlesequence
R: @@userGroupManagement@@log_warn@@50d28030-4e21-4c47-8b9b-fe0c4b39e405@@b887d02f-12ea-4dc9-96d5-563fc4b5bfbc@@29@@Users@@userQA2@@2012-06-07 17:54:41+02:00##06da3556-5204-4bd7-b3b0-fa5e7bcfbbea@#The user userQA2 ( Without any defined full name ) is not present on the system, which violates the presence policy
[root@centos-6-64 ~]#

Added by Nicolas PERRON almost 13 years ago

Revision bc536674 (diff)

Fixes #2552 password will be defined only when user has to be updated, not checked

Added by Jonathan CLARKE almost 13 years ago

Revision 0466000d

Merge branch 'branches/rudder/2.4'

  • branches/rudder/2.4:
    Clean up old syslog-ng config lines when Rudder changes them. Fixes #2579
    Refs #2561 : adding the repository path for windows
    Fixes #2564: correct indentation for multi-line text
    Fixes #2562: correct the syntax of the DNS Policy Template on Windows system
    Fixes #2561 : correct Techniques for windows
    Fixes #2552 password will be defined only when user has to be updated, not checked
    Refs #2394 Change policy to technique (metadata.xml)
    Refs #2394 Change policy to technique
    Refs #2556 Change class names in order to avoid techniques collisions
    Refs #2555 change class names to avoid Techniques collisions
    Refs #2553 change class names to avoid Techniques collisions
    Refs #2553 Explain 'nos' class
    Fixes #2555 Enhance comments, varaiable names relevance and classes for reporting
    Fixes #2554 Correct CFEngine class to remove Windows users
    Fixes #2553 Add comments and change variables on User Management Technique
    Fixes #2077: The modified-files directory is now purged of every file older than 30 days
    Fixes #2394: The hosts management technique now enables the user to configure the base template for the hosts file in a new PT version
    Revert "Fixes #2394: The hosts management technique now enables the user to configure the base template for the hosts file"
    Fixes #2499 : use a proper name for the reports part
    Fixes #2499 : correct the parser to correctly handle winwdows reports
    Fixes #2498 : correct the time separator for windows reports
    Fixes #2498: correct the generated reports on Windows
    Fixes #2485: component name in reporting now matches the component name in policy.xml
Actions
Copy link

Also available in: Atom PDF