Devin Roark via FreeIPA-users wrote: > Hello, > > I have inherited a freeipa cluster and during a cleanup of groups. We > discovered one of the groups that was deleted was set as a couple user's > primary gid in the past, which I'm assuming was a manual process because > it looks like the default behavior is the standard groupname/gid > matching the username/uid in FreeIPA. This causes errors when on > enrolled hosts, bash runs the id command behind the scenes and > subsequently breaks some automated pipelines for these users. > > Although doing an `ipa group-find --gid=${CORRESPONDING_UID}` doesn't > return any groups but users still match uid's and gid's, my thinking is > if we modify these two users to use their UID's as their primary group > again the issues will be resolved. > > My question is will this have any known unintended consequences?
But the user will still point to a non-existent group so I don't know that anything will change. Why not create a matching group for the user with the same name and uid and set the user's gid to that? I assume you've already checked for files owned by the now-deleted groups. rob _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org