Details
-
Suggestion
-
Resolution: Won't Do
-
None
-
None
-
None
Description
Scenario:
- There are two directories, one mapped to an uncached LDAP server.
- There is a user in the LDAP directory, and a group membership for that user. However, the user is outside of the scope for the LDAP connector, even though the group is not.
- i.e. LDAP believes there is a user, a group, and a membership, but Crowd sees a group and a membership but no user.
- That username exists in the other directory, but there is no group nor a membership for that user.
- When checking each directory individually, the membership (correctly) does not appear
Result
When doing a sync from a remote Crowd with an application containing both directories, the user (correctly) appears, and the membership (incorrectly) also appears.
Expected Result
User appears, but membership does not.