First time posting on this mailing list so hope I am asking the right question at the right place. I have a couple of questions.
1. I know we can use pam authentication for ldap authentication and that is great. How complex would the code have to get to be able to match the database groups (org admin, monitoring admin, etc) with LDAP groups. Even if we force the client to have certain groups in the LDAP I think would be more than acceptable. This would essentially eliminate the burden on having to enter the data into the database and have to control it through satellite. 2. I see from time to time while deploying these at client sites that the number one thing they want is like a 2 level admin. I know we have org admin, and the other 5, but I mean a level deeper in a sense. For example: a business case is a tier 1 admin only needing to have read/write for system group administrator (which adding to this group already does), but read only access to Activation Key Administrator, Configuration Administrator, and Monitoring Administrator. So that they can see the activation keys and the content therein, as well as the contents of the other two groups. I think similar to the way the software channels show to all, but only manageable from the channel administrator. I think that only being able to provide question #2 is a should be implemented if at all possible. Question #1 is more of a I wish it could do so. Wasn't sure if it was best to email on here or maybe submit a bugzilla for a feature request. Lastly, thank you all for all the hard work on all of the code :) ------------------------- Jose Simonelli Email: jsimo...@redhat.com ------------------------- _______________________________________________ Spacewalk-devel mailing list Spacewalk-devel@redhat.com https://www.redhat.com/mailman/listinfo/spacewalk-devel
