manage-identities: Should be possible to assign group-of-groups (IdM)
oybed opened this issue · 0 comments
oybed commented
In some identity managers, such as IdM/IPA, groups can be part of other groups to inherit permissions without having to assign individual users to each of the groups. The automation currently doesn't support this as-is, but it should.
Should be as easy as adding the group parameter to the create_groups.yml automation part of manage-idm-identities.
This should also be considered for other identity managers supported by infra-ansible, such as AWS/IAM, RH SSO, etc.