Just out of curiosity, I saw something this weekend while testing and I'm wondering if it's expected behavior or if referential integrity would address it.

I was able to add a non-existent user to a group. Shouldn't that have been an error? Do we check for that in the ldap pre callback? Do we intend for referential integrity to catch those sorts of things?

Or do we allow non-existent users to be members of group for some reason?

John Dennis <jden...@redhat.com>

Looking to carve out IT costs?

Freeipa-devel mailing list

Reply via email to