From 77cb1c56f13a41d1920efb2946db10a00ed63c9c Mon Sep 17 00:00:00 2001
From: Sumit Bose <sbose@redhat.com>
Date: Fri, 28 Feb 2014 10:05:34 +0100
Subject: SUDO: AD provider
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This patch adds the sudo target to the AD provider. The main reason is
to cover different default settings in the LDAP and AD provider. E.g.
the default for ldap_id_mapping is True in the AD provider and False
in the LDAP provider. If ldap_id_mapping was not set explicitly in the
config file both components worked with different setting.

Fixes https://fedorahosted.org/sssd/ticket/2256

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
Reviewed-by: Pavel Březina <pbrezina@redhat.com>
(cherry picked from commit 61804568ce5ede3b1a699cda17c033dd6c23f0e3)
---
 src/man/sssd-ad.5.xml   |  6 +++---
 src/man/sssd.conf.5.xml | 15 ++++++++++++---
 2 files changed, 15 insertions(+), 6 deletions(-)

(limited to 'src/man')

diff --git a/src/man/sssd-ad.5.xml b/src/man/sssd-ad.5.xml
index 38cc31278..8cd94d4ae 100644
--- a/src/man/sssd-ad.5.xml
+++ b/src/man/sssd-ad.5.xml
@@ -60,9 +60,9 @@
         </para>
         <para>
             However, it is neither necessary nor recommended to set these
-            options. The AD provider can also be used as an access and chpass
-            provider. No configuration of the access provider is required on
-            the client side.
+            options. The AD provider can also be used as an access, chpass and
+            sudo provider. No configuration of the access provider is required
+            on the client side.
         </para>
         <para>
             By default, the AD provider will map UID and GID values from the
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index 5d861c73c..29b08d53d 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -1450,14 +1450,23 @@ fallback_homedir = /home/%u
                             <citerefentry>
                                 <refentrytitle>sssd-ldap</refentrytitle>
                                 <manvolnum>5</manvolnum>
-                            </citerefentry> for more information on configuring LDAP.
+                            </citerefentry> for more information on configuring
+                            LDAP.
+                        </para>
+                        <para>
+                            <quote>ipa</quote> the same as <quote>ldap</quote>
+                            but with IPA default settings.
+                        </para>
+                        <para>
+                            <quote>ad</quote> the same as <quote>ldap</quote>
+                            but with AD default settings.
                         </para>
                         <para>
                             <quote>none</quote> disables SUDO explicitly.
                         </para>
                         <para>
-                            Default: The value of <quote>id_provider</quote> is used if it
-                            is set.
+                            Default: The value of <quote>id_provider</quote> is
+                            used if it is set.
                         </para>
                     </listitem>
                 </varlistentry>
-- 
cgit