summaryrefslogtreecommitdiffstats
path: root/src/providers/ipa/ipa_opts.h
diff options
context:
space:
mode:
authorPavel Reichl <preichl@redhat.com>2014-05-21 09:30:13 +0100
committerJakub Hrozek <jhrozek@redhat.com>2014-06-02 15:24:53 +0200
commit69994add9cd4e57d40b3b7a0b1783ef2d0aa974c (patch)
treee45d0d5055bfcb47cbff9a3717bcb803c613380a /src/providers/ipa/ipa_opts.h
parentc30f1d05d6c75080fbe8ea9868f291e7a331ad44 (diff)
downloadsssd-69994add9cd4e57d40b3b7a0b1783ef2d0aa974c.tar.gz
sssd-69994add9cd4e57d40b3b7a0b1783ef2d0aa974c.tar.xz
sssd-69994add9cd4e57d40b3b7a0b1783ef2d0aa974c.zip
SDAP: Add option to disable use of Token-Groups
Disabling use of Token-Groups is mandatory if expansion of nested groups is not desired (ldap_group_nesting_level = 0) for AD provider. Resolves: https://fedorahosted.org/sssd/ticket/2294 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Diffstat (limited to 'src/providers/ipa/ipa_opts.h')
-rw-r--r--src/providers/ipa/ipa_opts.h1
1 files changed, 1 insertions, 0 deletions
diff --git a/src/providers/ipa/ipa_opts.h b/src/providers/ipa/ipa_opts.h
index 949a054dd..0b39b8c5a 100644
--- a/src/providers/ipa/ipa_opts.h
+++ b/src/providers/ipa/ipa_opts.h
@@ -149,6 +149,7 @@ struct dp_option ipa_def_ldap_opts[] = {
{ "ldap_idmap_default_domain_sid", DP_OPT_STRING, NULL_STRING, NULL_STRING },
{ "ldap_groups_use_matching_rule_in_chain", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE },
{ "ldap_initgroups_use_matching_rule_in_chain", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE },
+ { "ldap_use_tokengroups", DP_OPT_BOOL, BOOL_TRUE, BOOL_TRUE},
{ "ldap_rfc2307_fallback_to_local_users", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE },
{ "ldap_disable_range_retrieval", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE },
{ "ldap_min_id", DP_OPT_NUMBER, NULL_NUMBER, NULL_NUMBER},
generated by cgit (git 2.34.1) at 2024-06-09 04:01:28 +0000