[Freeipa-users] getting rid of private groups
Craig White
CWhite at skytouchtechnology.com
Mon Nov 10 21:43:39 UTC 2014
Trying to learn to live without private groups.
I imported a bunch of users from OpenLDAP and that was good.
I created about 4 users and the private groups show up in odd places and I don't want them. The private groups offer little value since the bulk of the imported users don't have them anyway.
I have done...
ipa-managed-entries -e "UPG Definition" disable
ipa-managed-entries -e "NGP Definition" disable
ldapmodify -Y GSSAPI
dn: cn=UPG Definition,cn=Definitions,cn=Managed Entries,cn=etc,$SUFFIX
changetype: modify
replace: originfilter
originfilter: (objectclass=disabled)
and restarted dirsrv but they are still showing - and I can't delete them ;-(
ipa group-del test
ipa: ERROR: Deleting a managed group is not allowed. It must be detached first.
In the 'stash' application, I am trying to obscure them with an LDAP filter but that isn't working either
(&(objectclass=posixGroup)(!(objectclass=mepManagedEntry)))
How can I get rid of the these private groups?
Craig White
System Administrator
O 623-201-8179 M 602-377-9752
[cid:image001.png at 01CF86FE.42D51630]
SkyTouch Technology 4225 E. Windrose Dr. Phoenix, AZ 85032
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141110/ded86f81/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 7660 bytes
Desc: image001.png
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141110/ded86f81/attachment.png>
More information about the Freeipa-users
mailing list