diff options
| author | Sumit Bose <sbose@redhat.com> | 2013-05-10 09:55:31 +0200 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2013-06-06 23:58:56 +0200 |
| commit | 92af6f25864b5c389b57d0f659686801b45ca58c (patch) | |
| tree | 739bd3da9da35820d45c2b2c4bdb0c65ae8777d4 /src/man | |
| parent | 3680bb9c72ea5c60e6ac2fd2cf500b801341ca59 (diff) | |
| download | sssd-92af6f25864b5c389b57d0f659686801b45ca58c.tar.gz sssd-92af6f25864b5c389b57d0f659686801b45ca58c.tar.xz sssd-92af6f25864b5c389b57d0f659686801b45ca58c.zip | |
Enhance PAC responder for AD users
This patch modifies the PAC responder so that it can be used with the AD
provider as well. The main difference is that the POSIX UIDs and GIDs
are now lookup up with the help of the SID instead of being calculated
algorithmically. This was necessary because the AD provider allows
either algorithmic mapping or reading the value from attributes stored
in AD.
Fixes https://fedorahosted.org/sssd/ticket/1558
Diffstat (limited to 'src/man')
| -rw-r--r-- | src/man/sssd.conf.5.xml | 20 |
1 files changed, 10 insertions, 10 deletions
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml index 3bb1ca760..c2e475b5a 100644 --- a/src/man/sssd.conf.5.xml +++ b/src/man/sssd.conf.5.xml @@ -848,16 +848,16 @@ override_homedir = /home/%u following operations are done: <itemizedlist> <listitem><para>If the remote user does not exist in the - cache, it is created. The uid is calculated based on the - SID, trusted domains will have UPGs and the gid will have - the same value as the uid. The home directory is set based - on the subdomain_homedir parameter. The shell will be empty - by default, i.e. the system defaults are used, but can be - overwritten with the default_shell parameter.</para> - </listitem> - <listitem><para>If there are SIDs of groups from the domain - the sssd client belongs to, the user will be added to those - groups.</para></listitem> + cache, it is created. The uid is determined with the help + of the SID, trusted domains will have UPGs and the gid + will have the same value as the uid. The home directory is + set based on the subdomain_homedir parameter. The shell will + be empty by default, i.e. the system defaults are used, but + can be overwritten with the default_shell parameter.</para> + </listitem> + <listitem><para>If there are SIDs of groups from domains + sssd knows about, the user will be added to those groups. + </para></listitem> </itemizedlist> </para> <para> |