返回
-
标题
Permissions not applied in a managed domain -
说明
A managed domain added in ARS is not giving any permissions to accounts which are supposed to get it via access templates. Other managed domains are fine, but not for this one. ARS Admins are also impacted:
-
原因
Active Roles built-in policy "Built-in Policy - Exclude from Managed Scope" is applied. Creating an object via the ARS Shell will show below error:
-
解决办法
Remove/block "Built-in Policy - Exclude from Managed Scope" from the affected managed domain:
