Ask Your Question
0

How to reset/remove external directory service settings CLI

asked 2018-04-19 12:03:08 -0500

notwithoutcid gravatar image

I was attempting to connect the PE console to our FreeIPA/Red Hat IdM server and I guess I missed something cause now I can't log in at all with local or external users:

Something unexpected occurred: {"kind":"puppetlabs.rbac.ldap/non-unique-lookup-attr","msg":"We found multiple entries with the same lookup value in your directory service."}

I figure there must be some sort of configuration file or something if I use the command line and such, I've poked around the server but I can't find it. If anyone can help me resolve this that would be great.

/var/log/puppetlabs/console-services/console-services.log:

2018-04-19 09:31:08,063 [qtp965365390-65996] WARN  [p.r.utils] Found more than one match for attribute uid using value admin.
2018-04-19 09:31:08,070 [qtp773837653-70085] INFO  [p.p.routes] User admin failed to login.
2018-04-19 09:31:17,795 [qtp965365390-70013] WARN  [p.r.utils] Authentication failed.
2018-04-19 09:31:17,818 [qtp773837653-65823] INFO  [p.p.routes] User ./admin failed to login.
2018-04-19 09:31:33,668 [qtp965365390-69023] WARN  [p.r.utils] Found more than one match for attribute uid using value test.
2018-04-19 09:31:33,677 [qtp773837653-70088] INFO  [p.p.routes] User test failed to login.
edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2018-04-19 14:38:54 -0500

notwithoutcid gravatar image

I found the answer buried in the rbac-api:

[root@example.com ~]# curl -X PUT                             \ 
--cert /etc/puppetlabs/puppet/ssl/certs/example.com.pem       \
--key /etc/puppetlabs/puppet/ssl/private_keys/example.com.pem \
--cacert /etc/puppetlabs/puppet/ssl/certs/ca.pem              \
-H "Content-Type: application/json"                           \
-d {} https://example.com:4433/rbac-api/v1/ds

this will erase all the external directory settings that are causing the lockout. Cheers.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2018-04-19 12:03:08 -0500

Seen: 29 times

Last updated: Apr 19