[GAP] RenameGroup not supported
Jeffrey Eaton
jeaton at cmu.edu
Fri Jan 29 09:39:25 EST 2016
I believe we had some concerns with allowing group renames, and how to best implement it cross-platform.
You could do a modrdn operation if your LDAP server supports it, or just create a new group and delete the old one. Each has its advantages/diadvantages - for example, if you delete and recreate in AD, the SID will change. That may or may not be what you want in that case.
In general, we have just decided to err on the side of not renaming groups. If a group needs to change, we create a new group, and then delete the old.
-jeaton
> On Jan 28, 2016, at 9:27 PM, Jeff McCullough via Identity-services-gap <identity-services-gap at lists.andrew.cmu.edu> wrote:
>
>
> I just noticed that renameGroup isn’t supported. Does anyone know why that is the case?
>
> elsif ( $data->{"operation"} eq "renameGroup" ) {
> $log->info("Rename not handled...Skipping ActiveMQ message");
> }
>
> Thanks,
> Jeff
>
> _______________________________________________
> Identity-services-gap mailing list
> Identity-services-gap at lists.andrew.cmu.edu
> https://lists.andrew.cmu.edu/mailman/listinfo/identity-services-gap
More information about the Identity-services-gap
mailing list