#3098 group-mod should not be allowed to rename or modify admins account
Closed: Fixed None Opened 11 years ago by mkosek.

group-mod should not allow potentially dangerous actions like --rename or maybe also --external changes made to the admins group.

Otherwise, admin users may get a restricted access to DIT as our ACIs requires admins group to have a fixed name (and DN).


Metadata Update from @mkosek:
- Issue assigned to tbabej
- Issue set to the milestone: FreeIPA 3.0 RC2

7 years ago

Login to comment on this ticket.

Metadata