Duplicate users get created out of nowhere
Issue
-
We see extra users get created out of nowhere for a certain group in our AD. Usually, there is only 1 user per person.
-
We are using LDAP keystone backend as well as SAML / Federation integration.
-
Here is an example of duplicated user:
(overcloud) [stack@undercloud ~]$ openstack user show 6744b84cd6a747799b9462ce79a0d0d7
+---------------------+----------------------------------+
| Field | Value |
+---------------------+----------------------------------+
| domain_id | None |
| enabled | True |
| id | 6744b84cd6a747799b9462ce79a0d0d7 |
| name | DHill |
| password_expires_at | None |
+---------------------+----------------------------------+
this userid should be longer for a AD domain user.
(overcloud) [stack@undercloud ~]$ openstack user show dhill --domain localdomain
+---------------------+------------------------------------------------------------------+
| Field | Value |
+---------------------+------------------------------------------------------------------+
| description | DHill - Red Hat Support |
| domain_id | 83a950a832b24660afcb6cd498a2ed5f |
| email | DHill@localdomain |
| enabled | True |
| id | 58ed831a011c9528a1ebd34f5b48d81a97dad1e72ecab60522ec80330406223e |
| name | DHill |
| password_expires_at | None |
+---------------------+------------------------------------------------------------------+
Environment
- Red Hat OpenStack Platform 10.0 (RHOSP)
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
