There were two fixes for this for Spectrum 10.1.1, both were included in 10.2.0. Is this your 10.2.0 environment?
Does your scenario match either of these;
PTF_10.1.121 TEC1659999
Problem:
When a user is created in a certain group, the user gets created automatically into the Root group instead of in the designated group. It will therefore loose all privileges of the group and cannot log into OneClick.
Cause:
When we create a new user it does a call back to OneClick indicating two things, "New User Added" and "User Changed". In this call back the user-group details are returned as null i.e., the "New User Added" update is overwriting the "User Changed" update and when OneClick receives this call back update with group-info as null, it then creates this user in the Root group instead of a designated group.
Resolution:
Fixed in Spectrum_10.01.01.PTF_10.1.121
In this solution, we have swapped the group_association process with role_association, i.e., we first do user_model creation then role association and then group_association so that we get the call back update separately.
1. As the group_association process is delayed the user_model creation will send its call back to OneClick and this update will have null group details as a result the user will be first created under Root.
2. Now once the role_association is completed (which does not have any call back to OneClick), we start the group_association where this user is associated with its group. This association sends a call back to OneClick indicating user_changed with new group association.
3. Once this update is received at the OneClick they move this user (which is created under Root) to the appropriate group and hence the user is finally created under the proper group.
Additional Information:
Spectrum_10.01.01.PTF_10.1.121 has been replaced with Spectrum_10.01.01.PTF_10.1.136, please see TEC1054355
PTF_10.1.136 TEC1054355
Problem:
After applying the Spectrum_PTF_10.1.121 customer has reported an issue with security community strings, i.e., when a user is created under a group then Ideally it should only inherit the group’s security communities but here we saw that along with group’s security communities it is also having additional ADMIN security community added to the user.
Resolution:
This issue has been addressed with Spectrum_PTF_10.1.136.
Spectrum_PTF_10.1.136 consists of Spectrum_PTF_10.1.121 + additional changes to overcome the security communities issue.
So in the future whenever we come across the user getting created under root issue then install Spectrum_PTF_10.1.136.
Additional Information:
Spectrum_PTF_10.1.136 has been delivered to Spectrum 10.2.
Thanks,
Rene’
Rene’ Cantwell
Support Delivery Manager
CA Technologies | 273 Corporate Dr Suite 200 | Portsmouth, NH 03801
Office: 603-334-2497 | Rene.Cantwell@ca.com
<mailto:Rene.Cantwell@ca.com>[CA]<http://www.ca.com/us/default.aspx>[Twitter]<http://twitter.com/CAInc>[Slideshare]<http://www.slideshare.net/cainc>[Facebook]<https://www.facebook.com/CATechnologies>[YouTube]<http://www.youtube.com/user/catechnologies>[LinkedIn]<http://www.linkedin.com/company/1372?goback=.cps_1244823420724_1>[Google]<https://plus.google.com/CATechnologies>[Google+]<http://www.ca.com/us/rss.aspx?intcmp=footernav>