Group resource not creating the group

Does anyone know why the group resource would not create the group.
The error keeps coming back saying groupmod cannot find the group. I
would have thought that it would have used groupadd.

Here is the snippet from the recipe…

group “abc123” do

gid 405

action :create

end

error -> line 55) had an error: Chef::Exceptions::Exec: groupmod
userroot returned 10, expected 0

Error 10 says group does not exist, well I am trying to create it.
What am I doing wrong.??

Randy

1 Like

Do you have some directory services (e.g. openldap, NIS, AD) that already
has this group created? If so and if your new node doesn't have admin
rights, you're going to get this.

-Peter

On Thu, Mar 1, 2012 at 1:18 PM, Van Fossan,Randy vanfossr@oclc.org wrote:

Does anyone know why the group resource would not create the group. The
error keeps coming back saying groupmod cannot find the group. I would
have thought that it would have used groupadd.****


Here is the snippet from the recipe..****

group "abc123" do****

gid 405****

action :create****

end****


error -> line 55) had an error: Chef::Exceptions::Exec: groupmod userroot
returned 10, expected 0 ****


Error 10 says group does not exist, well I am trying to create it. What
am I doing wrong.??****


Randy****

wherever possible i avoid hardcoding uid and gids for this reason

On Thu, Mar 1, 2012 at 7:31 PM, Peter Norton pn+chef-list@knewton.comwrote:

Do you have some directory services (e.g. openldap, NIS, AD) that already
has this group created? If so and if your new node doesn't have admin
rights, you're going to get this.

-Peter

On Thu, Mar 1, 2012 at 1:18 PM, Van Fossan,Randy vanfossr@oclc.orgwrote:

Does anyone know why the group resource would not create the group. The
error keeps coming back saying groupmod cannot find the group. I would
have thought that it would have used groupadd.****


Here is the snippet from the recipe..****

group "abc123" do****

gid 405****

action :create****

end****


error -> line 55) had an error: Chef::Exceptions::Exec: groupmod userroot
returned 10, expected 0 ****


Error 10 says group does not exist, well I am trying to create it. What
am I doing wrong.??****


Randy****

Turns out the same group exists in our ldap. The local group needs to
be there at build time and in case of an ldap failure. I will have to
bypass the chef group resource for now and mod the /etc/group file
directory.

Note: this isn’t a failure in chef, just the way we have implemented
some groups. L

Thanks

Randy

From: Peter Norton [mailto:pn+chef-list@knewton.com]
Sent: Thursday, March 01, 2012 1:31 PM
To: chef@lists.opscode.com
Subject: [chef] Re: group resource not creating the group

Do you have some directory services (e.g. openldap, NIS, AD) that
already has this group created? If so and if your new node doesn’t have
admin rights, you’re going to get this.

-Peter

On Thu, Mar 1, 2012 at 1:18 PM, Van Fossan,Randy vanfossr@oclc.org
wrote:

Does anyone know why the group resource would not create the group.
The error keeps coming back saying groupmod cannot find the group. I
would have thought that it would have used groupadd.

Here is the snippet from the recipe…

group “abc123” do

gid 405

action :create

end

error -> line 55) had an error: Chef::Exceptions::Exec: groupmod
userroot returned 10, expected 0

Error 10 says group does not exist, well I am trying to create it.
What am I doing wrong.??

Randy

You can probably get around this with a not_if clause, and keep the
structure simple. This should let it only run if directory services aren't
available. It could cause problems if the cookbook and the ldap server get
out of sync if you use this a lot.

-Peter

On Thu, Mar 1, 2012 at 1:50 PM, Van Fossan,Randy vanfossr@oclc.org wrote:

Turns out the same group exists in our ldap. The local group needs to be
there at build time and in case of an ldap failure. I will have to
bypass the chef group resource for now and mod the /etc/group file
directory. ****


Note: this isn’t a failure in chef, just the way we have implemented some
groups. L****


Thanks****

Randy****


From: Peter Norton [mailto:pn+chef-list@knewton.com]
Sent: Thursday, March 01, 2012 1:31 PM
To: chef@lists.opscode.com
Subject: [chef] Re: group resource not creating the group****


Do you have some directory services (e.g. openldap, NIS, AD) that already
has this group created? If so and if your new node doesn't have admin
rights, you're going to get this.****


-Peter****

On Thu, Mar 1, 2012 at 1:18 PM, Van Fossan,Randy vanfossr@oclc.org
wrote:****

Does anyone know why the group resource would not create the group. The
error keeps coming back saying groupmod cannot find the group. I would
have thought that it would have used groupadd.****


Here is the snippet from the recipe..****

group "abc123" do****

gid 405****

action :create****

end****

error -> line 55) had an error: Chef::Exceptions::Exec: groupmod userroot
returned 10, expected 0 ****


Error 10 says group does not exist, well I am trying to create it. What
am I doing wrong.??****


Randy****