summaryrefslogtreecommitdiffstats
path: root/src/man
Commit message (Collapse)AuthorAgeFilesLines
* SELinux login managementJakub Hrozek2010-04-082-0/+23
| | | | | | | | | | Adds a new option -Z to sss_useradd and sss_usermod. This option allows user to specify the SELinux login context for the user. On deleting the user with sss_userdel, the login mapping is deleted, so subsequent adding of the same user would result in the default login context unless -Z is specified again. MLS security is not supported as of this patch.
* Make sss_userdel check for logged in usersJakub Hrozek2010-04-061-0/+11
| | | | | | | | | | sss_userdel now warns if the deleted user was logged in at the time of deletion. Also adds a new parameter --kick to userdel that kills all user processes before actually deleting ther user. Fixes: #229
* Add userdel_cmd paramJakub Hrozek2010-04-061-0/+14
| | | | Fixes: #231
* Add krb5_kpasswd optionSumit Bose2010-03-121-1/+22
|
* Add expandable sequences to krb5_ccachedirSumit Bose2010-03-111-1/+11
| | | | | | | As with krb5_ccname_template sequences like %u can be used in the krb5_ccachedir parameter which are expanded at runtime. If the directory does not exist, it will be created. Depending on the used sequences it is created as a public or private directory.
* Add simple access providerSumit Bose2010-03-082-0/+131
|
* Make filter_users and filter_groups also per-domainJakub Hrozek2010-03-081-1/+3
| | | | Fixes: #290
* groupshow: only show all parents in recursive modeJakub Hrozek2010-03-081-0/+2
|
* Fix check for values of expiration limitsJakub Hrozek2010-02-251-2/+2
| | | | | There were inconsistencies between what sssd.conf manpage said and what the code enforces.
* Better cleanup task handlingJakub Hrozek2010-02-231-0/+15
| | | | | | | | | | | | | | | | Implements a different mechanism for cleanup task. Instead of just deleting expired entries, this patch adds a new option account_cache_expiration for domains. If an entry is expired and the last login was more days in the past that account_cache_expiration, the entry is deleted. Groups are deleted if they are expired and and no user references them (no user has memberof: attribute pointing at that group). The parameter account_cache_expiration is not LDAP-specific, so that other future backends might use the same timeout setting. Fixes: #391
* Revert "Change default for enumeration to TRUE"Stephen Gallagher2010-02-231-1/+1
| | | | This reverts commit 75a9f18ad8ac6e885ac34cdeebc4d8f8734713f8.
* Do not check entries during cleanup taskJakub Hrozek2010-02-231-1/+1
| | | | | | | Do not attempt to validate expired entries in cache, just delete them. Also increase the cache timeouts. Fixes: #331
* Restrict family lookupsJakub Hrozek2010-02-221-0/+28
| | | | | | | Adds a new option that tells resolver which address family to prefer or use exclusively. Fixes: #404
* Build all manpages from a single locationStephen Gallagher2010-02-181-0/+97
|
* Rename server/ directory to src/Stephen Gallagher2010-02-1816-0/+2965
Also update BUILD.txt