Nice tip, but no: not Vsphere although it might usefull later; so thanks

We need it for several self-build applications.

Op 10-04-2024 om 17:13 schreef Rob Crittenden:
Winfried de Heiden via FreeIPA-users wrote:
Following documentation as provided on:

adding an extra objectClass (groupOfUniqueNames in this case) to newly
created groups turned out to be easy.

It seems we depend of this objectClass and its attribute "uniqueMember"
because of existing applications. Adding the latter attribute will only
work from the CLI. (ipa group-mod dummy3
Let me guess, vSphere?

You can tryhttps://www.freeipa.org/page/HowTo/vsphere5_integration  but
it's very old. I can't guarantee it will work.

It has the benefit that rather than manually modifying your entries the
extra attributes are calculated on the fly.


OK, this seems to work well, but the objectClass will be added to ALL
newly created groups since the objectClass is added to the defaults.
Now, let's say I want to add an extra objectClass to only one new
created group; how would that be possible? The command "ipa group-add"
command does not provide such an option, does it?

FYI, I'm running/testing IPA version: 4.11.0 on RHEL 9.4 Beta :)

The new attributes will not be visible in de webUI, only using the CLI
(or good-old Apache Directory Studio of ldapsearch). Correct?

