Bug 1462941 - [RFE] LDAP stub records should use entryUUID / objectGUID [NEEDINFO]
[RFE] LDAP stub records should use entryUUID / objectGUID
Status: NEW
Product: Red Hat CloudForms Management Engine
Classification: Red Hat
Component: Security (Show other bugs)
5.8.0
Unspecified Unspecified
unspecified Severity unspecified
: GA
: cfme-future
Assigned To: Gregg Tanzillo
Matt Pusateri
auth:externalauth
: FutureFeature
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-06-19 13:48 EDT by Jeff Warnica
Modified: 2017-07-18 11:09 EDT (History)
7 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
cpelland: needinfo? (jhardy)


Attachments (Terms of Use)

  None (edit)
Description Jeff Warnica 2017-06-19 13:48:10 EDT
Per summary, the LDAP AuthN system should use the entryUUID attribute (or  objectGUID, if AD) as the key in the stub records. 

Per https://tools.ietf.org/html/rfc4530 , this would protect against LDAP entries being renamed or moved.

Note You need to log in before you can comment on or make changes to this bug.