Bug 1462941 – [RFE] LDAP stub records should use entryUUID / objectGUID

Bug 1462941 - [RFE] LDAP stub records should use entryUUID / objectGUID [NEEDINFO]

Summary:	[RFE] LDAP stub records should use entryUUID / objectGUID

Status:	NEW

Aliases:	None

Product:	Red Hat CloudForms Management Engine
Classification:	Red Hat
Component:	Security (Show other bugs)
Sub Component:
Version:	5.8.0
Hardware:	Unspecified Unspecified

Priority	unspecified Severity unspecified
Target Milestone:	GA
Target Release:	cfme-future
Assigned To:	Gregg Tanzillo
QA Contact:	Matt Pusateri
Docs Contact:

URL:
Whiteboard:	auth:externalauth
Keywords:	FutureFeature

Depends On:
Blocks:
	Show dependency tree / graph

Reported:	2017-06-19 13:48 EDT by Jeff Warnica
Modified:	2017-07-18 11:09 EDT (History)
CC List:	7 users (show)

See Also:
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:
Type:	Bug
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Flags:	cpelland: needinfo? (jhardy)

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Jeff Warnica 2017-06-19 13:48:10 EDT

Per summary, the LDAP AuthN system should use the entryUUID attribute (or  objectGUID, if AD) as the key in the stub records. 

Per https://tools.ietf.org/html/rfc4530 , this would protect against LDAP entries being renamed or moved.

Note You need to log in before you can comment on or make changes to this bug.