What I ended up doing to deal with this was write a script that checks if any local users exist on the IPA server. If they do then it updates the UID and GID and user's homedir permissions to match what's in IPA.
Maybe not exactly what you're looking for but it worked for us as we transitioned from local auth to FreeIPA. That and the consistent ID's are nice.
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
