89 votesKim Cary commented
You enable authentication and authorization from LDAP. Authentication continues to consult the LDAP on login, but authorization does not. In fact the scheduled LDAP syncs update everything except the user role. REALLY? Its not like people change roles within an organization or anything.
This is not even a bug, its just inexperience with enterprise directory use in the real world. It pains me that a product I really find useful and believe in has such a reprehensible design oversight (and that it hasn't been fixed since 2011). AT LEAST let the LDAP sync change the role! That's weak, but at least not horrible as it is now.
The need to thaw to apply patches and updates greatly increases the complexity of this request. We will continue to watch the votes on this to see if this is something we will pursue.
49 votesKim Cary commented
Does NOT seem to be implemented in 6.0Kim Cary shared this idea ·