summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJakub Hrozek <jhrozek@redhat.com>2015-09-30 09:33:17 +0200
committerJakub Hrozek <jhrozek@redhat.com>2015-10-02 09:26:22 +0200
commit83b3d88c5039938bbaad7b80f517c8ae7df5a356 (patch)
tree06301dd44f651b7d86e393c502265af8c9fabd98
parente1e7797fc8ab8f02e3a759eed28ac60fe5e3c558 (diff)
downloadsssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.tar.gz
sssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.tar.xz
sssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.zip
MAN: Clarify pam_trusted_users option description
-rw-r--r--src/man/sssd.conf.5.xml14
1 files changed, 9 insertions, 5 deletions
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index 9701f2a15..92bfbb255 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -927,14 +927,18 @@ fallback_homedir = /home/%u
<term>pam_trusted_users (string)</term>
<listitem>
<para>
- Specifies the comma-separated list of UID values or
- user names that are allowed to access the PAM
- responder. User names are resolved to UIDs at
+ Specifies the comma-separated list of UID
+ values or user names that are allowed to run
+ PAM conversations against trusted domains.
+ Users not included in this list can only access
+ domains marked as public with
+ <quote>pam_public_domains</quote>.
+ User names are resolved to UIDs at
startup.
</para>
<para>
- Default: all (All users are allowed to access
- the PAM responder)
+ Default: All users are considered trusted
+ by default
</para>
<para>
Please note that UID 0 is always allowed to access