Schema attributes for cross forest domain incorrectly cached intermittently
Users from the cross forest domain cannot logon as they are not showing as Unix enabled.
The output of the following command shows the wrong schema mapping for the cross forest domain:
/opt/quest/bin/vastool schema list
This is due to possible network related issues resulting in the Quest application configuration (QAC) in the cross forest domain not being read correctly.
This will only affect user logons if the cross forest domain is using schemaless (altSecurityIdentities)
Product defect:
428006 - cross forest QAC not read, defaults to rfc2307 when it's schemaless, users disappear
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center