When using AD bridge, a change in the UID attribute in AD does not result in a change of the username in BoKS. I.e. changes to the UID attribute are ignored for existing users.

Resolution / Workaround

Apply the hotfix HFBM-0065, available for download from the HelpSystems Community Portal.

There is an explicit call in adsync to check if a user with the Distinguished Name already exists in BoKS. With the hotfix, the call is now optional and controlled through configuration in $BOKS_etc/adsync.cfg. Set ALLOWUIDCHANGE=Y to allow for changes in the login name. The result if the UID is changed for a user is that the account is removed from BoKS and recreated with the new login name. See also the man page adsync.cfg(5).

Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018