Hi FreeIPA,
Maybe I've misunderstood how migrate-ds should work, worth mentioning the source directory is RFC2307 - if ipa migrate-ds migrates a user, then later that user is added more groups and the same migrate-ds command is run again, should it not add the user into the corresponding groups on IPA which did not have its memberUid prior?
Alfred
Alfred Victor via FreeIPA-users wrote:
Hi FreeIPA,
Maybe I've misunderstood how migrate-ds should work, worth mentioning the source directory is RFC2307 - if ipa migrate-ds migrates a user, then later that user is added more groups and the same migrate-ds command is run again, should it not add the user into the corresponding groups on IPA which did not have its memberUid prior?
It isn't a sync tool. If an entry already exists then it is considered migrated and skipped.
rob
freeipa-users@lists.fedorahosted.org
-
Alfred Victor -
Rob Crittenden