戻る
-
タイトル
Moving a hardware object in AD to another container may result in the membership being deleted in Identity Manager -
説明
Moving a hardware object in AD to another container may result in the membership being deleted in Identity Manager, and then in AD. -
原因
When a hardware object is moved in AD to another container, in a subsqeuent sync, the membership cannot be matched because the Distinguished Name of the hardware was changed if hardware objects are not included in the sync config.The membership will be deleted in Identity Manager as expected, but additionally in AD which is not intended. -
対策
Resolution:
Defect 21317 has been logged for this issue.
Workaround:
Remove permission for the Identity Manager service account to delete such memberships in Active Directory. -
変更要求
21317