Uploaded image for project: 'IT Service Management'
  1. IT Service Management
  2. ITSM-4251

Restarting ldap containers will lose olcSizeLimit config

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Resolved
    • Resolution: Fixed
    • Component/s: None
    • Labels:
      None

      Description

      In order for crowd sync to work, olcSizeLimit has to be set. When we restart the containers, that configuration is overridden.

      We need to get it to not get lost on restarts, and document this.

      By default, it seems that it's always using 500, so only the 500 users of each LDAP group will be retrieved from LDAP.

      2019-12-29 10:17:16,481 Caesium-2-3 INFO [atlassian.crowd.directory.DbCachingRemoteDirectory] FULL synchronisation for directory [ 5537794 ] starting
      2019-12-29 10:17:16,532 Caesium-2-3 INFO [directory.ldap.cache.RemoteDirectoryCacheRefresher] found [ 500 ] remote users in [ 37 ms ]
      2019-12-29 10:17:16,557 Caesium-2-3 INFO [atlassian.crowd.directory.DbCachingRemoteChangeOperations] scanned and compared [ 500 ] users for delete in DB cache in [ 24ms ]
      

      The workaround is applying to LDAP:

      # cat > sizelimit.ldif
      dn: cn=config
      changetype: modify
      replace: olcSizeLimit
      olcSizeLimit: 100000
      
      # copy to container
      # and run 
      time ldapmodify -w ${LDAP_CONFIG_PASSWORD} -D "cn=admin,cn=config"  -a -f /tmp/sizelimit.ldif
      

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              cintiadr Cintia Del Rio
              Reporter:
              cintiadr Cintia Del Rio
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: