[Freeipa-users] "User Administrator" role member doesn't see "User Groups" under identity tab
Rob Crittenden
rcritten at redhat.com
Thu Dec 15 20:15:55 UTC 2011
Ian Levesque wrote:
>
> On Dec 15, 2011, at 3:46 AM, Adam Young wrote:
>
>>>> I'm running version 2.0.0-23 under Scientific 6.1. I've noticed that users in the "User Administrator" role, don't have access via the web UI to actually manage groups. The only link under "Identity" is "Users". CLI management works as expected. Is this a known bug with the relatively old version of FreeIPA I'm running?
>>>>
>>>> $ ipa role-show "User Administrator"
>>>> Role name: User Administrator
>>>> Description: Responsible for creating Users and Groups
>>>> Member users: levesque
>>>> Privileges: user administrators, group administrators
>>>>
>>>> $ ipa privilege-show "group administrators"
>>>> Privilege name: Group Administrators
>>>> Description: Group Administrators
>>>> Permissions: add groups, remove groups, modify groups, modify group membership
>>>> Granting privilege to roles: User Administrator
>>>
>>> A similar issue was fixed in 2.1.3 but it affected all UI screens IIRC (e.g. non-admins never saw anything extra).
>>
>> Yes, that is the same issue.
>
> Do you have a BZ link for this? We're tracking RHEL releases, and it appears that 6.2 will only get us up to version 2.1.1. I'm curious if the fix can be diff'ed in...
https://bugzilla.redhat.com/show_bug.cgi?id=745957
The current RHEL 6.2 release is based on freeIPA 2.1.3.
rob
More information about the Freeipa-users
mailing list