Hi,
I got a problem when Ranger sync user from AD. My Ranger is V0.6.0.2.0 in HDF-2.0.2.0
Most of users are sync from AD, and I can see them on Ranger Admin UI Users/Groups. Only two users in the group nifi-admins are missed.
But I can see they are fetched in usersync.log
27 Dec 2016 22:45:50 INFO UserGroupSync [UnixUserSyncThread] - Begin: initial load of user/group from source==>sink
27 Dec 2016 22:45:50 INFO LdapUserGroupBuilder [UnixUserSyncThread] - LDAPUserGroupBuilder updateSink started
27 Dec 2016 22:45:50 INFO LdapUserGroupBuilder [UnixUserSyncThread] - Performing Group search first
27 Dec 2016 22:45:50 INFO LdapUserGroupBuilder [UnixUserSyncThread] - Adding nifi-admins to user CN=NiFi Admin1,OU=CorpUsers,DC=field,DC=hortonworks,DC=com
27 Dec 2016 22:45:50 INFO LdapUserGroupBuilder [UnixUserSyncThread] - Adding nifi-admins to user CN=NiFi Admin,OU=CorpUsers,DC=field,DC=hortonworks,DC=com
27 Dec 2016 22:45:50 INFO LdapUserGroupBuilder [UnixUserSyncThread] - No. of members in the group nifi-admins = 2
And I can verify them in the Ranger Usersync node with sssd
$ id nifiadmin
uid=1960401378(nifiadmin) gid=1960400513(domain_users) groups=1960400513(domain_users),1960401370(nifi-admins)
$ id nifiadmin1
uid=1960402757(nifiadmin1) gid=1960400513(domain_users) groups=1960400513(domain_users),1960401370(nifi-admins)
Not sure how to solve it.
Regards,
Wendell
