diff options
author | Jakub Hrozek <jhrozek@redhat.com> | 2015-09-30 09:33:17 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2015-10-02 09:26:22 +0200 |
commit | 83b3d88c5039938bbaad7b80f517c8ae7df5a356 (patch) | |
tree | 06301dd44f651b7d86e393c502265af8c9fabd98 | |
parent | e1e7797fc8ab8f02e3a759eed28ac60fe5e3c558 (diff) | |
download | sssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.tar.gz sssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.tar.xz sssd-83b3d88c5039938bbaad7b80f517c8ae7df5a356.zip |
MAN: Clarify pam_trusted_users option description
-rw-r--r-- | src/man/sssd.conf.5.xml | 14 |
1 files changed, 9 insertions, 5 deletions
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml index 9701f2a15..92bfbb255 100644 --- a/src/man/sssd.conf.5.xml +++ b/src/man/sssd.conf.5.xml @@ -927,14 +927,18 @@ fallback_homedir = /home/%u <term>pam_trusted_users (string)</term> <listitem> <para> - Specifies the comma-separated list of UID values or - user names that are allowed to access the PAM - responder. User names are resolved to UIDs at + Specifies the comma-separated list of UID + values or user names that are allowed to run + PAM conversations against trusted domains. + Users not included in this list can only access + domains marked as public with + <quote>pam_public_domains</quote>. + User names are resolved to UIDs at startup. </para> <para> - Default: all (All users are allowed to access - the PAM responder) + Default: All users are considered trusted + by default </para> <para> Please note that UID 0 is always allowed to access |