Details
-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
None
-
5
-
Severity 3 - Minor
-
5
-
Description
When a user connected by LDAP is removed from LDAP, the cwd_user record is removed, but the corresponding cwd_membership record will remain as an orphaned record.
Steps to reproduce
- Link Crowd to an LDAP Directory
- Synchronize so a user (with a group membership) is added to Crowd
- Search the database for the user in the cwd_user table and cwd_membership table (should exist in both)
- Remove the user from the LDAP
- Synchronize with Crowd
- Search the database for the user in the cwd_user table and cwd_membership table
Expected Result
User is removed from both tables
Actual Result
The user record will exist in cwd_membership but not in cwd_user
Other Information
This can create an issue in a database audit situation where records do not match across tables
Attachments
Issue Links
- is related to
-
CWD-4801 Provide a feature for Crowd to always re-evaluate group memberships in Active Directory with Incremental Sync
- Closed