On Thu, Jul 5, 2018 at 12:36 PM, <[email protected]> wrote:
> Hello, > as part of our policy I have to change from LDAP to Active > Directory for authentication in our oVirt system. Hmm, do I understand that correctly that you were moving oVirt users from some other LDAP server to AD? Any reason other than political to do that? > I have managed to configure a test system that allows users to login using > the CN (sAMAccountName) as before. The users in the system using the AD > namespace are using their UPN for their user name. > Do we have to copy permissions from all the old accounts to their new > accounts or is there a way to rename them to the UPN retaining there old > permissions? > I don't think there is any other way than to copy permissions. But you can automate the process using for example ovirt_permissions/ovirt_permissions_facts Ansible modules [1] or one of our SDKs (Python, Java, Ruby). Martin [1] https://docs.ansible.com/ansible/latest/modules/list_of_cloud_modules.html#ovirt > Thanks, > Paul S. > _______________________________________________ > Users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Privacy Statement: https://www.ovirt.org/site/privacy-policy/ > oVirt Code of Conduct: https://www.ovirt.org/community/about/community- > guidelines/ > List Archives: https://lists.ovirt.org/archives/list/[email protected]/ > message/3W3UAU3G3V53E7GT4CKT2MIH3GAFZ4DU/ > -- Martin Perina Associate Manager, Software Engineering Red Hat Czech s.r.o.
_______________________________________________ Users mailing list -- [email protected] To unsubscribe send an email to [email protected] Privacy Statement: https://www.ovirt.org/site/privacy-policy/ oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/[email protected]/message/XQZ66LBZSP3FMMZBM3DGMD45I5552SQZ/
