scottsignal commented on issue #10030: URL: https://github.com/apache/cloudstack/issues/10030#issuecomment-2514989528
> @scottsignal, looks like mostly sensible changes, though I had to read twice ;) > > ad2; The one that I doubt is to not be able to add a manual local user to an LDAP linked account, but we can put this behind a feature flag. > > ad 1; you mean outside the details (in the list overview)? Apologies, I should have clarified further. ad 2; I am fine with a feature flag (May make sense to have it at Domain level?). From a compliance standpoint we do not want someone to be able to create a local user on an account that is enabled Link to LDAP. We are doing 2FA outside of Cloudstack (via LDAP) and just want to enforce it. ad: 1; I just was referring to the details `tab` under account in the GUI. This could be returned in the API as well -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
