while very attractive in some senses, using 'wheel' as a GID means we cannot have administrators own files, which is required for mandatory profiles.
Created attachment 8124 [details] patch from master - no longer use wheel group in provision
Comment on attachment 8124 [details] patch from master - no longer use wheel group in provision This looks good. The only question I have is what heppens to S-1-5-32-544: the idmap setup for that sid is not changed but removed completely. Is that correct?
It will get the next available uid/gid as IDMAP_BOTH.
Comment on attachment 8124 [details] patch from master - no longer use wheel group in provision ACK
(In reply to comment #3) > It will get the next available uid/gid as IDMAP_BOTH. Oh right... :-) Assigning to Karolin for inclusion into v4-0-test
Pushed to autobuild-v4-0-test.
Has been pushed to v4-0-test. Closing out bug report. Thanks!