From c2d7b2271eafd27b41736624e4e5da121073279d Mon Sep 17 00:00:00 2001
From: Stephen Gallagher <sgallagh@redhat.com>
Date: Thu, 22 Oct 2009 11:58:06 -0400
Subject: Add support for offline auth cache timeout

This adds a new option (offline_credentials_expiration) to the
[PAM] section of the sssd.conf

If the user does not perform an online authentication within the
timeout (in days), they will be denied auth once the timeout
passes.
---
 server/config/etc/sssd.api.conf | 1 +
 1 file changed, 1 insertion(+)

(limited to 'server/config')

diff --git a/server/config/etc/sssd.api.conf b/server/config/etc/sssd.api.conf
index 99e87b913..8ec6d9c2c 100644
--- a/server/config/etc/sssd.api.conf
+++ b/server/config/etc/sssd.api.conf
@@ -31,6 +31,7 @@ filter_users_in_groups = bool, None, true
 
 [pam]
 # Authentication service
+offline_credentials_expiration = int, None
 
 [provider]
 #Available provider types
-- 
cgit