As HPC system admin, I want to add a new freeipa user with the same name of previously deleted one (without a workaround).
after adding new ipa user with the same name of a previously deleted one (autohomedir is enabled) and logging in as this new user, it gives an error: the gid of (the previously deleted user gid) have no username
the gid of (the previously deleted user gid) have no username
1.kinit admin 2.ipa user-add test 3.ipa user-del test 4.ipa user-add test 5.su test
kinit admin
ipa user-add test
ipa user-del test
su test
ipa-server-4.6.8-5.el7.centos.x86_64 389-ds-base-1.3.10.2-9.el7_9.x86_64 pki-ca-10.5.18-7.el7.noarch krb5-server-1.15.1-50.el7.x86_64
we have found a workaround to solve this by creating that new user with option --uid and --gidnumber of the previously created ones.
ipa user-add test [other options] --uid=[previous user's id] --gidnumber=[previous user's gid]
but we still need this problem to be solved natively.
I think what you want is to preserve users rather than delete them. See https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/linux_domain_identity_authentication_and_policy_guide/managing-users-life-cycle
Managing file user/group ownership is left as an exercise for the administrator. This is not a problem unique to IPA.
Maintaining a list of all deleted users and groups on the chance that they are re-added at some point in the future to invoke a global chown/chgrp across all enrolled IPA clients is not something we will do.
Metadata Update from @rcritten: - Issue close_status updated to: wontfix - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.