The CLI supports creating a permission with a memberof attribute (although there's bug #2100):
# ipa permission-add test --permissions=write --memberof=editors ----------------------- Added permission "test" ----------------------- Permission name: test Permissions: write
The UI needs to support a similar functionality.
master: 05345ce
(In #2255) #2100 & #2101 are the fixes for this one.
Metadata Update from @edewata: - Issue assigned to pvoborni - Issue set to the milestone: FreeIPA 3.0 Core Effort - 2011/12
Login to comment on this ticket.