Project membership not immediately updated in Aria Automation after Active Directory user group sync
Article ID: 314801
Updated On:
Products
VMware Aria Suite
Issue/Introduction
Symptoms:
- After adding a user account to an AD group which is already a project member in Aria Automation and syncing the users via vIDM the user will not be immediately recognized as a project member.
- When attempting to assign ownership of a deployment via day 2 change owner operation the new user is not available for selection.
- The issue only affects users added to groups which already exist as members within the project.
Environment
VMware vRealize Automation 8.x
Cause
As the adding of users to groups already added to the project is not considered a daily occurrence and due to the overhead of the sync its frequency is currently set on a 12-14 hour basis.
Resolution
To resolve the issue and perform the sync on demand you can leverage the sync-principals api call. Details of which can be found in the swagger API documentation.
Workaround:
Another workaround which can be performed directly in the UI is to remove and re-add the group to the project. After this any newly added users will immediately be recognized.
Feedback
Yes
No
Powered by
