From 41ef946f3f74a46b9e26118116e4811e259b30ef Mon Sep 17 00:00:00 2001 From: Pavel Březina Date: Tue, 24 Jan 2012 13:42:59 +0100 Subject: SUDO Integration - in-memory cache in responder New sudo responder option: cache_timeout https://fedorahosted.org/sssd/ticket/1111 --- src/man/sssd.conf.5.xml | 38 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) (limited to 'src/man/sssd.conf.5.xml') diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml index 94fc591af..e8e8b3347 100644 --- a/src/man/sssd.conf.5.xml +++ b/src/man/sssd.conf.5.xml @@ -594,6 +594,44 @@ + + + SUDO configuration options + + These options can be used to configure the sudo service. + + + + + + + sudo_cache_timeout (integer) + + + For any sudo request that comes while SSSD is + online, the SSSD will attempt to update the cached + rules in order to ensure that sudo has the latest + ruleset. + + + The user may, however, run a couple of sudo commands + successively, which would trigger multiple LDAP requests. + In order to speed up this use-case, the sudo service + maintains an in-memory cache that would be used for + performing fast replies. + + + This option controls how long (in seconds) can the sudo + service cache rules for a user. + + + Default: 180 + + + + + + -- cgit