sssd.git/src/man, branch sudo Unnamed repository; edit this file 'description' to name the repository. ldap: Change ldap_user_certificate to userCertificate;binary 2017-10-04T06:54:41+00:00 amitkuma amitkuma@redhat.com 2017-09-06T18:01:45+00:00 d1d6f3a7f08cd1dc5128105eb6ad7ec311f281b8 IPA and AD providers default to userCertificate;binary for the ldap_user_certificate option. It will be good to default that value also for the generic LDAP provider. Resolves: https://pagure.io/SSSD/sssd/issue/3499 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
IPA and AD providers default to userCertificate;binary for the
ldap_user_certificate option. It will be good to default that value
also for the generic LDAP provider.

Resolves:
https://pagure.io/SSSD/sssd/issue/3499

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
SSSCTL: Replace sss_debuglevel with shell wrapper 2017-09-25T19:50:32+00:00 Justin Stephenson jstephen@redhat.com 2017-05-13T02:42:40+00:00 da19eaea902744ec3cb41f87fa93fadb767f90e7 The sss_debuglevel binary is replaced by a shell wrapper calling sssctl debug-level as part of merging sss_debuglevel into sssctl. The wrapper will redirect sss_debuglevel to the sssctl debug-level command performing the same task. The sss_debuglevel(8) man page is updated to indicate that sss_debuglevel is deprecated and functionality exists now in sssctl. Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Michal Židek <mzidek@redhat.com> 
The sss_debuglevel binary is replaced by a shell wrapper calling
sssctl debug-level as part of merging sss_debuglevel into sssctl.
The wrapper will redirect sss_debuglevel to the sssctl debug-level
command performing the same task. The sss_debuglevel(8) man page is
updated to indicate that sss_debuglevel is deprecated and functionality
exists now in sssctl.

Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Michal Židek <mzidek@redhat.com>
MAN: Add a note about the output of all commands when using domain_resolution_order 2017-09-14T15:18:01+00:00 Fabiano Fidêncio fidencio@redhat.com 2017-09-13T05:22:12+00:00 3ec6f2902a89d97ad3af5df400a45217fe764f4e As the output of all commands when using domain_resolution_order is fully-qualified, even when using shortnames, let's add a note in the man page to make it explicit. Also, let's suggest a possible workaround for this having the output non fully-qualified and also mention the problems that the possible workaround may cause. Resolves: https://pagure.io/SSSD/sssd/issue/3513 Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
As the output of all commands when using domain_resolution_order is
fully-qualified, even when using shortnames, let's add a note in the man
page to make it explicit. Also, let's suggest a possible workaround for
this having the output non fully-qualified and also mention the problems
that the possible workaround may cause.

Resolves: https://pagure.io/SSSD/sssd/issue/3513

Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
MAN: Improve ipa_hostname description 2017-09-13T19:02:15+00:00 AmitKumar amitkuma@redhat.com 2017-08-10T14:41:45+00:00 fdefac9c4a5c9f2dcc8748ccb736e9a6910c2365 The description of ipa_hostname config option doesn't mention it must be fully-qualified, although when using a non-fully qualified name IPA server may behave weirdly. Thus, let's add this info the the man page. Related: https://pagure.io/SSSD/sssd/issue/1946 Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
The description of ipa_hostname config option doesn't mention it must be
fully-qualified, although when using a  non-fully qualified name IPA
server may behave weirdly. Thus, let's add this info the the man page.

Related: https://pagure.io/SSSD/sssd/issue/1946

Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
MAN: Add sssd-systemtap man page 2017-09-08T14:09:53+00:00 Justin Stephenson jstephen@redhat.com 2017-05-29T18:32:51+00:00 f199c749197532fd3380fa6f5d9f7a579879c21a Provide information for administrators and users to utilize SSSD systemtap infrastructure. Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> 
Provide information for administrators and users to utilize
SSSD systemtap infrastructure.

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
MAN: Document that the secrets provider can only be specified in a per-client section 2017-09-06T06:04:44+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-01T08:04:21+00:00 e8bad995fb1219df2a4fef8f55c80284c6ab36d3 Resolves: https://pagure.io/SSSD/sssd/issue/3417 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Justin Stephenson <jstephen@redhat.com> 
Resolves:
https://pagure.io/SSSD/sssd/issue/3417

Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Justin Stephenson <jstephen@redhat.com>
MAN: Improve failover documentation by explaining the timeout better 2017-09-05T15:52:08+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-29T14:16:01+00:00 3bcf6b17a1bd8fbef99e1f8bfc33f4312b40e48b Reviewed-by: Pavel Březina <pbrezina@redhat.com> 
Reviewed-by: Pavel Březina <pbrezina@redhat.com>
MAN: Improve description of 'trusted domain section' in sssd.conf's man page 2017-09-05T09:17:41+00:00 AmitKumar amitkuma@redhat.com 2017-07-18T15:33:04+00:00 781d231a12eb0c772353cc15e2c3ae1e7545e663 PR generated to include explaination for ipa ad trust sssd configuration where ad has a child domain. Explanation is added to 'TRUSTED DOMAIN SECTION'. Also an example is included to better understanding. Resolves: https://pagure.io/SSSD/sssd/issue/3399 Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
PR generated to include explaination for ipa ad trust sssd configuration
where ad has a child domain. Explanation is added to 'TRUSTED DOMAIN
SECTION'. Also an example is included to better understanding.

Resolves: https://pagure.io/SSSD/sssd/issue/3399

Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
SECRETS: Support 0 as unlimited for the quotas 2017-09-01T18:27:01+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-07T15:20:43+00:00 109ed7ca1a82420798efdc6a9b019675a5bd0f4f Add a special value for all the quota-like settings that means 'no limit'. Because the responder also had a global limit on the size of the accepted body (64kiB), this patch also removes the hardcoded limit and instead keep track of the biggest quota value on startup. Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
Add a special value for all the quota-like settings that means 'no
limit'.

Because the responder also had a global limit on the size of the
accepted body (64kiB), this patch also removes the hardcoded limit and
instead keep track of the biggest quota value on startup.

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>
SECRETS: Add a new option to control per-UID limits 2017-09-01T18:26:45+00:00 Jakub Hrozek jhrozek@redhat.com 2017-06-05T14:10:55+00:00 6b3bab516355fdf4cc81e6da9d87ec3818ab190f Adds a new option max_uid_secrets that allows to set a limit of secrets for this particular client so that the user cannot starve other users. Resolves: https://pagure.io/SSSD/sssd/issue/3363 Reviewed-by: Simo Sorce <simo@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> 
Adds a new option max_uid_secrets that allows to set a limit of secrets
for this particular client so that the user cannot starve other users.

Resolves:
https://pagure.io/SSSD/sssd/issue/3363

Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com>