Issue #3431: [RFE] Allow for creation of "system" users with no person objectclass - freeipa

freeipa

#3431 [RFE] Allow for creation of "system" users with no person objectclass

Closed: Duplicate None Opened 11 years ago by orion.

In order to manage organization-wide system users and to manage manage LDAP group membership of local system users we need to be able to store system users in the LDAP database. However, these users should be distinct from regular IPA accounts. In particular they should not have the person object class so as to not end up in address book type searches.

Also, it would be nice if the migration tools could migrate such users as well.

Example user:

dn: uid=apache,ou=People,dc=example,dc=com
objectClass: top
objectClass: posixAccount
homeDirectory: /var/www
loginShell: /sbin/nologin
gidNumber: 48
uidNumber: 48
cn: apache
uid: apache

dpal commented 11 years ago

Dup of #3430

mkosek commented 10 years ago

General backlog was renamed to Beer Exchange

Metadata Update from @orion:
- Issue assigned to someone
- Issue set to the milestone: Ticket Backlog

7 years ago

Metadata

Assignee

someone

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

Ticket Backlog

None

affects_doc

None

source

None

knownissue

None

type

enhancement

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#3431 [RFE] Allow for creation of "system" users with no person objectclass Closed: Duplicate None Opened 11 years ago by orion.

Metadata

#3431 [RFE] Allow for creation of "system" users with no person objectclass

Closed: Duplicate None Opened 11 years ago by orion.