From fc7ec12f1b851bab1eedf3ecdcb094ea80b46dd2 Mon Sep 17 00:00:00 2001
From: Sumit Bose <sbose@redhat.com>
Date: Mon, 19 Apr 2010 11:59:09 +0200
Subject: Add support for delayed kinit if offline

If the configuration option krb5_store_password_if_offline is set to
true and the backend is offline the plain text user password is stored
and used to request a TGT if the backend becomes online. If available
the Linux kernel key retention service is used.
---
 src/config/SSSDConfig.py | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src/config/SSSDConfig.py')

diff --git a/src/config/SSSDConfig.py b/src/config/SSSDConfig.py
index 18df9790..ead74c21 100644
--- a/src/config/SSSDConfig.py
+++ b/src/config/SSSDConfig.py
@@ -98,6 +98,7 @@ option_strings = {
     'krb5_ccname_template' : _("Location of the user's credential cache"),
     'krb5_keytab' : _("Location of the keytab to validate credentials"),
     'krb5_validate' : _("Enable credential validation"),
+    'krb5_store_password_if_offline' : _("Store password if offline for later online authentication"),
 
     # [provider/krb5/chpass]
     'krb5_changepw_principal' : _('The principal of the change password service'),
-- 
cgit