diff options
| author | Jakub Hrozek <jhrozek@redhat.com> | 2015-09-30 09:33:17 +0200 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2015-10-02 12:30:50 +0200 |
| commit | c57b54505dbeca931fcf47b243d59eb73d8683bb (patch) | |
| tree | 09c3f875094a623e0d5c6bd974c6a3b2fd288d98 | |
| parent | 5f9c206477132eaba5650bae85e04936ca2ec456 (diff) | |
| download | sssd-c57b54505dbeca931fcf47b243d59eb73d8683bb.tar.gz sssd-c57b54505dbeca931fcf47b243d59eb73d8683bb.tar.xz sssd-c57b54505dbeca931fcf47b243d59eb73d8683bb.zip | |
MAN: Clarify pam_trusted_users option description
Reviewed-by: Alexander Bokovoy <abokovoy@redhat.com>
| -rw-r--r-- | src/man/sssd.conf.5.xml | 14 |
1 files changed, 9 insertions, 5 deletions
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml index 9701f2a15..92bfbb255 100644 --- a/src/man/sssd.conf.5.xml +++ b/src/man/sssd.conf.5.xml @@ -927,14 +927,18 @@ fallback_homedir = /home/%u <term>pam_trusted_users (string)</term> <listitem> <para> - Specifies the comma-separated list of UID values or - user names that are allowed to access the PAM - responder. User names are resolved to UIDs at + Specifies the comma-separated list of UID + values or user names that are allowed to run + PAM conversations against trusted domains. + Users not included in this list can only access + domains marked as public with + <quote>pam_public_domains</quote>. + User names are resolved to UIDs at startup. </para> <para> - Default: all (All users are allowed to access - the PAM responder) + Default: All users are considered trusted + by default </para> <para> Please note that UID 0 is always allowed to access |