[midPoint] Assigned AD group does not reappear when 1 of 2 groups is deleted from AD user
Pálos Gustáv
gustav.palos at evolveum.com
Wed Apr 27 13:45:30 CEST 2016
Hi,
please send me a resource config XML
Do you use <tolerant>false</tolerant> in group attribute in schemaHandling?
Gusto
2016-04-27 13:33 GMT+02:00 Aivo Kuhlberg <aivo.kuhlberg at rmit.ee>:
> I noticed today strange behavior about midPoint role reassignment. I have
> set up AD sync and imported users and also groups as roles. I am testing
> user who have AD resource assignment in midPoint and also 2 AD-group-based
> role assignments.
> At first I remove in AD one of the assigned role-based groups from user,
> but not both groups. Then I run recomputation task in midPoint.
> Result: previously deleted group does not appear again to AD user
> If I remove both groups in AD then after recomputation both groups appear
> again in AD user
> Is this a bug or I am missing something?
>
> I use midPoint 3.3.1 with AD connector
>
>
> Thanks,
>
> Aivo Kuhlberg
>
> ------------------------------
> Käesolev e-kiri võib sisaldada asutusesiseseks kasutamiseks tunnistatud
> teavet.
> This e-mail may contain information which is classified for official use.
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160427/c1f056d5/attachment.htm>
More information about the midPoint
mailing list