Hello,
I have 1 user account that I can't get groups added to from IDM. A couple weeks ago, this user reported he wasn't able to access any resources and when we looked in AD, all his groups were gone.
However, in IDM all his groups still showed in ADS. We cleared all the groups from ADS, and tried to re-add them groups via Manager/ADS and nothing fires in the background.
So we added back all the groups in ActiveDirectory, and when we synced AD to IDM all those groups appeared again in Manager/ADS. However, as soon as we try to add a group via ADS, the addition doesn't happen and instead IDM removes every single group from AD.
Again this is only this one user, no one else. We deleted the account from AD, ran a sync to IDM and re-created the account in IDM. I tried again to add these groups to his account and nothing happens.
I turned on advanced logging and no errors are logged at all.
I do have a support ticket open, but wanted to see if anyone had any ideas on this.
