Univention Bugzilla – Full Text Bug Listing |
Summary: | sync ntSecurityDescriptor of groupPolicyContainer objects | ||
---|---|---|---|
Product: | UCS | Reporter: | Felix Botner <botner> |
Component: | S4 Connector | Assignee: | Arvid Requate <requate> |
Status: | CLOSED FIXED | QA Contact: | Stefan Gohmann <gohmann> |
Severity: | normal | ||
Priority: | P5 | CC: | ebersbach, gohmann, jmm, markus.daehlmann, petersen, schwardt |
Version: | UNSTABLE | ||
Target Milestone: | UCS 3.2-4-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
See Also: | https://forge.univention.org/bugzilla/show_bug.cgi?id=38144 | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Bug Depends on: | 36978 | ||
Bug Blocks: | 37350 |
Description
Felix Botner
2013-12-18 12:30:07 CET
Reported via 2014092421000347 Scheduled for end of November. Fixed. Testcase: 52_s4connector/100sync_gpo_ntsecurity_descriptor Advisory: 2014-11-27-univention-s4-connector.yaml I've a UCS@school setup with S4 on master and two slaves. If I create a GPO and remove Authenticated Users from the GPO permissions and add another group, Authenticated Users is re-added. If I stop the s4 connector, Authenticated Users is not re-added. The problem is the attribute based sync. As discussed, maybe we sync the ntSecurityDesciptor in @school setups only. Ok, code and advisory have been updated. There is a new errata bug for UCS@schoool 4.0 to activate synchronization. (In reply to Arvid Requate from comment #5) > Ok, code and advisory have been updated. There is a new errata bug for > UCS@schoool 4.0 to activate synchronization. That's Bug #37350. Code review: OK Tests: OK |