I do have a file ztestfile created with user_a:somegroup with mode 660.
If I open this particular file with user_b who belongs to the same group
in vim I get "E212 - can't open file for writing".
user_a is an IPA user
user_b is an AD user
somegroup is an IPA posix group that hols an external (AD) group there
user_b is a member of
Both users as well as the group are resolved properly.
We do have ignore_group_members set to true.
I tried echo "asdf" >> ztestfile. That surprisingly worked on an IPA
client but did not on an IPA server.
What could be the problem here? Where would I see more?
Cheers,
Ronald
Show replies by date