Handling External User and Group Attributes within Red Hat Identity Management (IdM / IPA) Server

Solution Verified - Updated -

Issue

  • Red Hat Identity Management (IdM) Server / IPA Server either crash or hang and produce number SSSD errors when attempting to utilize the User and Group Attributes that are stored in an external Identity and Access Management (IAM) system (example: Microsoft Active Directory, Red Hat IdM/IPA Server, LDAP, etc.).
  • User and Group Attributes that are stored in an external Identity and Access Management (IAM) system (example: Microsoft Active Directory, Red Hat IdM/IPA Server, LDAP, etc.) need to be interrupted by IdM/IPA Server while remaining within the original or external IAM system, without being translated by IdM/IPA Server. This need to occur so as to not create conflicts with user/group permissions, produce conflicts or errors with logging and auditing, or conflict with compliance requirements.
  • Enable the Cross-Domain and Cross-Realm Trust integration between multiple IAM providers (example: Microsoft Active Directory, Red Hat IdM/IPA Server, LDAP, etc.) to integrate more seamlessly without causing significant impact to performance or scalability.

Environment

  • Red Hat Enterprise Linux Server (RHEL) 8
    • Running Red Hat Identity Management (IdM) Server / IPA Server
  • Red Hat Enterprise Linux Server (RHEL) 9
    • Running Red Hat Identity Management (IdM) Server / IPA Server

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content