With the third patchlevel release, we are providing new installation media for UCS, which, as usual, include all security and feature updates from the past twelve weeks. Among them are improvements to the new Provisioning Service app from Nubus for Kubernetes as well as enhancements to the handling of the primary group for users and computers.
Table of Contents
The Provisioning Service Is Available as a Preview Installation
A preview version of the new Provisioning Service, developed as part of Nubus for Kubernetes, is now available. It introduces an API that allows events from the Univention Directory Manager – such as newly created user accounts – to be retrieved. This will help standardize and simplify the development of connectors for Nubus for Kubernetes and UCS in the future.
Simplified Synchronization of Complex Directory Service Structures
The Active Directory Connector was extended several months ago with advanced filter rules, making it easier to configure synchronization for only specific parts of the directory service. With the latest update, parent containers can now also be synchronized automatically when performing such partial synchronizations of the LDAP tree. This significantly reduces configuration effort, especially in complex, dynamic scenarios.
Assignment of the Primary Group Depending on the Position in the Directory Tree
In the Univention Directory Manager, user and computer objects can now automatically be assigned to the group stored in their „parent container“ when they are created. Previously, the default primary group could only be set globally. This new feature is the first step toward handling objects differently depending on their position in the LDAP database, and eventually also administering them with different permissions.
Visibility of Groups in Microsoft 365
The Microsoft 365 Connector now makes it possible to define group visibility during synchronization. Administrators can determine in the Univention Directory Manager whether a group is created in Microsoft 365 as Private or Public. This not only changes the visibility for end users but also affects other properties of the group (see Microsoft documentation).
Outlook and Overview
As always, the update includes numerous other security and feature improvements, which are detailed in the release notes and help articles. In addition, we have prepared many new features for delegated administration that we will introduce in the coming weeks.
We look forward to your feedback – either here in the blog or on help.univention.com.
