diff options
author | Alexander Bokovoy <abokovoy@redhat.com> | 2012-10-31 19:52:12 +0000 |
---|---|---|
committer | Simo Sorce <simo@redhat.com> | 2012-11-01 15:46:58 -0400 |
commit | fc3834ca46fa986694be6a94f0a51d74e9e532a8 (patch) | |
tree | 0a830bc0a6a8041d535ce695b499cb3d34b719e9 /.gitignore | |
parent | 57132797120bcd3f68380b6b74343af2d83e0657 (diff) | |
download | freeipa-fc3834ca46fa986694be6a94f0a51d74e9e532a8.tar.gz freeipa-fc3834ca46fa986694be6a94f0a51d74e9e532a8.tar.xz freeipa-fc3834ca46fa986694be6a94f0a51d74e9e532a8.zip |
Resolve external members from trusted domain via Global Catalog
A sequence is following:
1. Match external member against existing trusted domain
2. Find trusted domain's domain controller and preferred GC hosts
3. Fetch trusted domain account auth info
4. Set up ccache in /var/run/ipa_memcached/krb5cc_TD<domain> with principal ourdomain$@trusted.domain
5. Do LDAP SASL interactive bind using the ccache
6. Search for the member's SID
7. Decode SID
8. Replace external member name by SID
Diffstat (limited to '.gitignore')
0 files changed, 0 insertions, 0 deletions