Ubuntu
shadow package

uidmap AD username format

Asked by Zuberu

Hi, we are using uidmap for our rootless docker installation. The format of our AD user is DOMAIN\USERNAME. When this format is added to the subuid and subgid file it does not recognise the username format.

So only this format in subuid and subgid file:

DOMAINUSERNAME:100000:65536

Does not work

Same for this format:

DOMAIN\USERNAME:100000:65536

The only way that it works is when we have these 2 entries together:

DOMAINUSERNAME:100000:65536
DOMAIN\USERNAME:100000:65536

Any explanation for that?

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu shadow Edit question
Assignee:
No assignee Edit question
Solved by:
Zuberu
Solved:
Last query:
Last reply:
Revision history for this message
Bernard Stafford (bernard010) said : 		#1

Terminal:
lsb_release -a; uname -a; dpkg -l | grep ' linux-i'

Please paste output her for diagnostic purposes.

Which version of shadow package do you have ?
https://packages.ubuntu.com/search?keywords=shadow&searchon=names&suite=jammy&section=all

https://docs.docker.com/engine/security/rootless/#troubleshooting

Revision history for this message
Zuberu (zuberu23) said : 		#2

xx@xx-xx-xx-xx:~# lsb_release -a; uname -a; dpkg -l | grep ' linux-i'
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 20.04.6 LTS
Release: 20.04
Codename: focal
Linux xx-xx-xx-xx.fgcorp.fgad.fg.local 5.15.0-1039-aws #44~20.04.1-Ubuntu SMP Thu Jun 22 12:21:12 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
ii linux-image-5.15.0-1039-aws 5.15.0-1039.44~20.04.1 amd64 Signed kernel image aws
ii linux-image-aws 5.15.0.1039.44~20.04.28 amd64 Linux kernel image for Amazon Web Services (AWS) systems.
xx@xx-xx-xx-xx:~#

shadow package

xx@xx-xx-xx-xx:~# dpkg-query -W -f='${Package}\t${Version}\t${Source}\n' \* | grep shadow
login 1:4.8.1-1ubuntu5.20.04.4 shadow
passwd 1:4.8.1-1ubuntu5.20.04.4 shadow
uidmap 1:4.8.1-1ubuntu5.20.04.4 shadow
xx@xx-xx-xx-xx:~#

Revision history for this message
Zuberu (zuberu23) said : 		#3

This was not uidmap issue rather the script been use was the issue

Revision history for this message
Zuberu (zuberu23) said : 		#4

This was not uidmap issue rather the script been use was the issue

Revision history for this message
zoyz (moyaa) said : 		#5