Add support for offline auth cache timeout

This adds a new option (offline_credentials_expiration) to the [PAM] section of the sssd.conf If the user does not perform an online authentication within the timeout (in days), they will be denied auth once the timeout passes.
author: Stephen Gallagher <sgallagh@redhat.com> 2009-10-22 11:58:06 -0400
committer: Stephen Gallagher <sgallagh@redhat.com> 2009-10-22 15:43:01 -0400
commit: c2d7b2271eafd27b41736624e4e5da121073279d (patch)
tree: 517d165f3f229b4783d5568fd06a1b8a80d089ad /server/config/etc
parent: ff75b1a0e342f694589c46d9d59c509ac69be980 (diff)
download: sssd-c2d7b2271eafd27b41736624e4e5da121073279d.tar.gz
sssd-c2d7b2271eafd27b41736624e4e5da121073279d.tar.xz
sssd-c2d7b2271eafd27b41736624e4e5da121073279d.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/server/config/etc/sssd.api.conf b/server/config/etc/sssd.api.conf
index 99e87b913..8ec6d9c2c 100644
--- a/server/config/etc/sssd.api.conf
+++ b/server/config/etc/sssd.api.conf
@@ -31,6 +31,7 @@ filter_users_in_groups = bool, None, true
 
 [pam]
 # Authentication service
+offline_credentials_expiration = int, None
 
 [provider]
 #Available provider types
author	Stephen Gallagher <sgallagh@redhat.com>	2009-10-22 11:58:06 -0400
committer	Stephen Gallagher <sgallagh@redhat.com>	2009-10-22 15:43:01 -0400
commit	c2d7b2271eafd27b41736624e4e5da121073279d (patch)
tree	517d165f3f229b4783d5568fd06a1b8a80d089ad /server/config/etc
parent	ff75b1a0e342f694589c46d9d59c509ac69be980 (diff)
download	sssd-c2d7b2271eafd27b41736624e4e5da121073279d.tar.gz sssd-c2d7b2271eafd27b41736624e4e5da121073279d.tar.xz sssd-c2d7b2271eafd27b41736624e4e5da121073279d.zip