AD: read flat name and SID of the AD domain

For various features either the flat/short/NetBIOS domain name or the domain SID is needed. Since the responders already try to do a subdomain lookup when and known domain name is encountered I added a subdomain lookup to the AD provider which currently only reads the SID from the base DN and the NetBIOS name from a reply of a LDAP ping. The results are written to the cache to have them available even if SSSD is started in offline mode. Looking up trusted domains can be added later. Since all the needed responder code is already available from the corresponding work for the IPA provider this patch fixes https://fedorahosted.org/sssd/ticket/1468
author: Sumit Bose <sbose@redhat.com> 2013-05-02 20:28:30 +0200
committer: Jakub Hrozek <jhrozek@redhat.com> 2013-05-07 14:12:06 +0200
commit: 4cdaf239d4504966bed8ecd5e3fa07def74c7302 (patch)
tree: 34ceec2ae3c01723e4337e09718569d786d8ed13 /src/man
parent: 41bfa213a0994cebcef5f69fd2c353136c803ae4 (diff)
download: sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.gz
sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.xz
sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.zip
2 files changed, 8 insertions, 0 deletions
diff --git a/src/man/sssd-ad.5.xml b/src/man/sssd-ad.5.xml
index c19607715..4dcd552d7 100644
--- a/src/man/sssd-ad.5.xml
+++ b/src/man/sssd-ad.5.xml
@@ -95,6 +95,10 @@ ldap_id_mapping = False
                             specified as the lower-case version of the long
                             version of the Active Directory domain.
                         </para>
+                        <para>
+                            The short domain name (also known as the NetBIOS
+                            or the flat name) is autodetected by the SSSD.
+                        </para>
                     </listitem>
                 </varlistentry>
 
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index 04c699948..99337fbba 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -1481,6 +1481,10 @@ override_homedir = /home/%u
                             Regular expression for this domain that describes
                             how to parse the string containing user name and
                             domain into these components.
+                            The "domain" can match either the SSSD
+                            configuration domain name, or, in the case
+                            of IPA trust subdomains and Active Directory
+                            domains, the flat (NetBIOS) name of the domain.
                         </para>
                         <para>
                             Default for the AD and IPA provider:
author	Sumit Bose <sbose@redhat.com>	2013-05-02 20:28:30 +0200
committer	Jakub Hrozek <jhrozek@redhat.com>	2013-05-07 14:12:06 +0200
commit	4cdaf239d4504966bed8ecd5e3fa07def74c7302 (patch)
tree	34ceec2ae3c01723e4337e09718569d786d8ed13 /src/man
parent	41bfa213a0994cebcef5f69fd2c353136c803ae4 (diff)
download	sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.gz sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.xz sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.zip