summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJan Cholasta <jcholast@redhat.com>2011-06-28 14:19:51 +0200
committerRob Crittenden <rcritten@redhat.com>2011-07-14 19:26:25 -0400
commit1c5028c17df9dc903a6db2712738670c3534246f (patch)
treef998c5c30f694e90629f9d7f05583f76321076fc
parentbea7818adde2712be3ee052634bdf314fd63b5da (diff)
downloadfreeipa-1c5028c17df9dc903a6db2712738670c3534246f.tar.gz
freeipa-1c5028c17df9dc903a6db2712738670c3534246f.tar.xz
freeipa-1c5028c17df9dc903a6db2712738670c3534246f.zip
Configure SSSD to store user password if offline.
ticket 1359
-rwxr-xr-xipa-client/ipa-install/ipa-client-install4
-rw-r--r--ipa-client/man/ipa-client-install.13
2 files changed, 7 insertions, 0 deletions
diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install
index 884dd213b..6bdeb8796 100755
--- a/ipa-client/ipa-install/ipa-client-install
+++ b/ipa-client/ipa-install/ipa-client-install
@@ -90,6 +90,8 @@ def parse_options():
help="The hostname of this server (FQDN). By default of nodename from uname(2) is used.")
parser.add_option("", "--enable-dns-updates", dest="dns_updates", action="store_true", default=False,
help="Configures the machine to attempt dns updates when the ip address changes.")
+ parser.add_option("--no-krb5-offline-passwords", dest="krb5_offline_passwords", action="store_false",
+ help="Configure SSSD not to store user password when the server is offline", default=True)
options, args = parser.parse_args()
safe_opts = parser.get_safe_opts(options)
@@ -550,6 +552,8 @@ def configure_sssd_conf(fstore, cli_realm, cli_domain, cli_server, options):
if options.dns_updates:
domain.set_option('ipa_dyndns_update', True)
+ if options.krb5_offline_passwords:
+ domain.set_option('krb5_store_password_if_offline', True)
domain.set_active(True)
diff --git a/ipa-client/man/ipa-client-install.1 b/ipa-client/man/ipa-client-install.1
index 40d53a872..e689177db 100644
--- a/ipa-client/man/ipa-client-install.1
+++ b/ipa-client/man/ipa-client-install.1
@@ -81,6 +81,9 @@ The hostname of this server (FQDN). By default of nodename from uname(2) is used
.TP
\fB\-\-enable\-dns\-updates\fR
This option tells SSSD to automatically update DNS with the IP address of this client.
+.TP
+\fB\-\-no\-krb5\-offline\-passwords\fR
+Configure SSSD not to store user password when the server is offline.
.SH "EXIT STATUS"
0 if the installation was successful