RHEL-10.0, 9.6, 9.4, 8.10 IdM LDAP possible incorrect search results, no data, broken replication, index issues after Nov or Dec 2025 errata updates

Solution Verified - Updated -

Issue

Several errata updates in November and December 2025 of the supported RHEL IdM LDAP packages caused anomalies, such as:

  • Replication starts to fail if replication agreements cannot be found
  • IPA commands do not return the expected results or give empty results, resulting in similar effects in the web UI:
# ipa config-show
# ipa hbacrule-find
# ipa sudorule-find
# ipa-replica-manage list
# ipa user-find --all
# ipa host-find --all

Environment

  • Red Hat Enterprise Linux versions 10.0, 9.6, 9.4, 8.10
  • Red Hat Identity Management (IPA/IdM)
  • IPA Server Update
    • RHEL-10.0.z: 389-ds-base-3.0.6-13.el10_0 - 2025-10-14 RHBA-2025:17897
    • RHEL-9.6.z EUS: 389-ds-base-2.6.1-12.el9_6 - 2025-10-14 RHBA-2025:17898
    • RHEL-9.4.z EUS: 389-ds-base-2.4.5-21.module+el9dsrv+23745+9e220dbf - 2025-12-16 RHBA-2025:23229
    • RHEL-8.10.z: 389-ds-base-1.4.3.39-19.module+el8.10.0+23773+9fb87221 - 2025-12-16 RHBA-2025:23230

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content