[Freeipa-devel] [PATCH] 134 Improve handling of GIDs when migrating groups
Rob Crittenden
rcritten at redhat.com
Wed Oct 5 17:44:50 UTC 2011
Martin Kosek wrote:
> Since IPA v2 server already contain predefined groups that may collide
> with groups in migrated (IPA v1) server (for example admins, ipausers),
> users having colliding group as their primary group may happen to belong
> to an unknown group on new IPA v2 server.
>
> Implement --group-overwrite-gid option to overwrite GID of already
> existing groups to prevent this issue.
>
> https://fedorahosted.org/freeipa/ticket/1866
For argument's sake, what is the user going to see the first time they
run this? I assume they won't think about these duplicate groups and
just do the migration. This means that the result may be some users
pointing to non-existent GIDs.
If they re-run the migration with this option will it then fix
everything up?
I'm wondering if we need a --test argument so people can run the
migration w/o writing entries to look for problems like this.
rob
More information about the Freeipa-devel
mailing list