Background :

- Census configured with groups , and should pickup members in the
configured groups.
- local authentication ( /etc/shadow and /etc/group)


When i add a (new) user to a group configured in the Census/
searchobject it is detected and sent to the platform.
However it does not get added to the group ?

Research on logs reveals that the platformService is processing the
event in the wrong order

it first tries to add the (not yet created) user to the group, and then
processes the useradd to the platform.
The adding to the group is not re-processed after the useradd.

Here's the log:


Code:
--------------------

Jan 27 19:17:33 TEST-RHEL-1 asamrcvr[7347]: PRCV019I An event was received for object LIN-IDCS-Operator. apr1134

Jan 27 19:17:33 TEST-RHEL-1 /usr/local/ASAM/bin/PlatformServices/PlatformReceiver/scripts/populategroup.sh[13493]: echo operat1 not on platform, can't add to LIN-IDCS-Operator.

Jan 27 19:17:33 TEST-RHEL-1 asamrcvr[7347]: PRCV019I An event was received for object operat1. apr1095

Jan 27 19:17:34 TEST-RHEL-1 /usr/local/ASAM/bin/PlatformServices/PlatformReceiver/scripts/adduser.sh[13564]: :/usr/sbin/useradd -m -u "10022" -c "Operat1" "operat1": RC=0

Jan 27 19:17:34 TEST-RHEL-1 asamrcvr[7347]: AUDR001I Add User on Platform pt-vm-test-rhel-1: eUser operat1, UID 10022, Platform Association operat1. aru2039

Jan 27 19:17:34 TEST-RHEL-1 asamrcvr[7347]: operat1's password has been reset.

--------------------


Is there something that can be done to either re-trigger the memberadd
or let the populategroup.sh script check if the user its trying to add
exists or not and if not fire adduser.sh first ?


--
Shadowm
------------------------------------------------------------------------
Shadowm's Profile: https://forums.netiq.com/member.php?userid=6005
View this thread: https://forums.netiq.com/showthread.php?t=52679