Hi all,
This is more like a conceptual question. I have an ADE OOTB installation and I would like to know how to handle this matter:
- an Active Directory administrator created a Distribution List into AD with these attributes:
Name: test1
Group Scope: Global
Owner: userA
Members: m1, m2, m3
- The AD Sync has not run yet because runs on a daily basis
- an user creates a DL using IT Shop, but used same name:
Name: test1
Group Scope: Universal
- After approved by the target system admin, a process to create the DL into AD was launched but it fails because the "object already exist"
So, at the end. The DL exists in IT Shop and has the attributes that the user configured, but those attributes are different from the real attributes defined in AD.
How should I handle this matter? by default IT Shop does not validate if the group already exist in AD, Should I validate it? Should I create a policy to restrict groups creation only by IT Shop?
Please let me know your thoughts.
Thanks in advanced