[ https://issues.apache.org/jira/browse/RANGER-5188?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17948491#comment-17948491 ]
Sailaja Polavarapu commented on RANGER-5188: -------------------------------------------- [~kudivuhadi] , can you please let me know if you have ranger.usersync.deletes.enabled config set to true? If so, please look at the below Jira for more details RANGER-980. Once a user is marked as hidden by ranger usersync, Ranger Admin has to manually delete users/groups that are marked Hidden and restart usersync. If you don't want to usersync to track the deleted user or users moved from one org to another in the AD, please disable the feature by setting ranger.usersync.deletes.enabled config to false > LDAP usersync and "hidden" users > -------------------------------- > > Key: RANGER-5188 > URL: https://issues.apache.org/jira/browse/RANGER-5188 > Project: Ranger > Issue Type: Task > Components: usersync > Affects Versions: 2.3.0, 2.4.0 > Reporter: Krzysztof Sobolewski > Priority: Major > > A customer noticed one of their users got "hidden" in Ranger after user sync. > After adding the user back to the synced LDAP groups and rerun the user sync, > the user entry remains hidden. > The question is: > How does Ranger handle hidden user entries during a full sync when group sync > is enabled (ranger.usersync.group.searchenabled=true) but user search is > disabled (ranger.usersync.user.searchenabled=false)? > Specifically, if a previously hidden user reappears in a synced LDAP group, > will Ranger automatically unhide them, or does the hidden status persist? -- This message was sent by Atlassian Jira (v8.20.10#820010)