The Puppet Labs Issue Tracker has Moved:

This issue tracker is now in read-only archive mode and automatic ticket export has been disabled. Redmine users will need to create a new JIRA account to file tickets using See the following page for information on filing tickets with JIRA:

Feature #1861

manage_membership for unix groups provider

Added by Joe McDonagh over 7 years ago. Updated over 2 years ago.

Status:AcceptedStart date:01/12/2009
Priority:NormalDue date:
Assignee:-% Done:


Target version:-
Affected Puppet version:0.24.7 Branch:
Keywords:group manages_members
groupadd unix

We've Moved!

Ticket tracking is now hosted in JIRA:

This ticket is now tracked at:


I searched and didn’t see this feature request so if is/was at some point forgive me.

I’d like to be able to define the users that belong to a group in the group’s resource. My compelling reason is that a specific unix group is used to determine ssh access via AllowGroups in sshd_config, and I’d like to make sure that at all times only specific users are in that group. My workaround is to manage /etc/group as a file resource, which isn’t very puppet-like.


#1 Updated by James Turnbull over 7 years ago

  • Category set to group
  • Status changed from Unreviewed to Accepted
  • Assignee set to Puppet Community
  • Target version set to 4

#2 Updated by James Turnbull almost 7 years ago

  • Assignee deleted (Puppet Community)

#3 Updated by Ken Barber about 5 years ago

An alternative workaround for this is to use augeas:

augeas{ 'group_mygroup':
  changes => 'set /files/etc/group/mygroup/user "myuser"',

#4 Updated by James Turnbull over 4 years ago

  • Target version deleted (4)

#5 Updated by Wil Cooley over 4 years ago

  • Keywords changed from group manage_membership unix to group manages_members groupadd unix

Reviewed for triage-a-thon 21-01-2012; ticket looks ok to me for 2.7.9—feature hasn’t slipped in past documentation.

$ cat test1.pp
group { 'testgroup':
    members => [Users['root'], Users['wcooley']],
$ sudo puppet apply -v test1.pp
info: /Group[testgroup]: Provider groupadd does not support features manages_members; not managing attribute members
info: Applying configuration version '1327185495'
info: Creating state file /var/lib/puppet/state/state.yaml
notice: Finished catalog run in 0.02 seconds

#6 Updated by Anonymous over 2 years ago

Redmine Issue #1861 has been migrated to JIRA:

Also available in: Atom PDF