There is synchronization.allowDeletions option which has only true/false value, I need to join users from these groups to same group in Alfresco. This way I will be able to add users from both ADs to same local group synced in Alfresco and folders will have only one group as permission and it this group will contain users from both ADs.
When I set allowDeletions to true, users are overidden according to AD configuration order/priority.
When I set allowDeletions to false, users relations to groups from AD02 ignored / not synced to respective local groups from AD01.
Re: Multiple non-chained ADs - local group merge possible ?
The Alfresco synchronisation does not allow merging users of identically named groups from different user directories. This would disrupt the correct operation of the synchronisation components which always inspect individual user directories in isolation, without some significant re-implementation / customisation of the core synchronisation code of Alfresco. It could technically/logically be done with proper source tracking / differentiation logic, but not without any changes to Alfresco core code.