A user with "User Administrator" role cannot add users to an External Group.
ipa: ERROR: Insufficient access: Insufficient 'write' privilege to the 'ipaExternalMember' attribute of entry
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1286288 (Red Hat Enterprise Linux 7)
attachment freeipa-pvoborni-0960-permissions-add-permission-for-modifying-external-gr.patch
patch available, moving to closer release
I don't see any read permission for external members. IMO it should be added too.
moving out tickets not implemented in 4.4.1
4.4.2 is a stabilization milestone. If this bug is important stabilization bug then please put it to NEEDS TRIAGE milestone for retriage.
Metadata Update from @pvoborni: - Issue assigned to pvoborni - Issue set to the milestone: FreeIPA 4.5 backlog
New pr: #565, could go to 4.5
Metadata Update from @pvoborni: - Issue close_status updated to: None
master:
Metadata Update from @mbasti: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.