docker-host# docker run --user=testaccount1 -d -p 9001:9001 e7b263ac54e2 990c220ccb30b5012e7e5aa45f7e9345098cdb867328302daff567474055de02 docker: Error response from daemon: linux spec user: unable to find user testaccount1: no matching entries in passwd file.
docker-host# getent passwd testaccount1 testaccount1:*:1218400025:1218400025:test account:/local/home/testaccount1:/bin/bash
anyone know how exactly can I run docker contain on accounts which is in FreeIPA?
docker-host is Ubuntu, running sssd.
Thomas,
if I understood correctly, you're runnig freeipa-container, right?
If you are, the --user parameter should receive a user that is already created in image. Also, this is not related to the freeipa-server image specifically, but a general usage of Docker.
You can check more of it in [1] and [2].
If I misunderstood it, please provide more details/context of it.
[1] https://docs.docker.com/engine/reference/run/#user [2] https://stackoverflow.com/questions/41100333/difference- between-docker-run-user-and-group-add-parameters
On (17/07/17 09:54), Thomas Lau via FreeIPA-users wrote:
docker-host# docker run --user=testaccount1 -d -p 9001:9001 e7b263ac54e2 990c220ccb30b5012e7e5aa45f7e9345098cdb867328302daff567474055de02 docker: Error response from daemon: linux spec user: unable to find user testaccount1: no matching entries in passwd file.
docker-host# getent passwd testaccount1 testaccount1:*:1218400025:1218400025:test account:/local/home/testaccount1:/bin/bash
anyone know how exactly can I run docker contain on accounts which is in FreeIPA?
Use UID erinstead of name
e.g. [root@host ~]# docker run --user=lslebodn -ti fedora:26 uname /usr/bin/docker-current: Error response from daemon: linux spec user: unable to find user lslebodn: no matching entries in passwd file.
[root@host ~]# docker run --user=`id -u lslebodn` -ti fedora:26 uname Linux
LS
freeipa-users@lists.fedorahosted.org