diff options
| author | Sumit Bose <sbose@redhat.com> | 2009-09-10 14:43:33 +0200 |
|---|---|---|
| committer | Simo Sorce <ssorce@redhat.com> | 2009-09-14 12:08:58 -0400 |
| commit | 945e1f1fab935616bde0d1d64d9e16225b44c183 (patch) | |
| tree | 24f7f54a3457ea982d90ce3cb6b7b0ab4e10efbe /server/man | |
| parent | 4039db6e6b34330fec51bc765f40e85bf7b61141 (diff) | |
| download | sssd-945e1f1fab935616bde0d1d64d9e16225b44c183.tar.gz sssd-945e1f1fab935616bde0d1d64d9e16225b44c183.tar.bz2 sssd-945e1f1fab935616bde0d1d64d9e16225b44c183.zip | |
add krb5ccache_dir and krb5ccname_template option
The configuration options krb5ccache_dir and krb5ccname_template
are added to the Kerberos provider to create the user's credential
caches the same way as pam_krb5 does. Due to the design of the sssd
and the supported ccache types of MIT Kerberos only files are
allowed.
Diffstat (limited to 'server/man')
| -rw-r--r-- | server/man/sssd-krb5.5.xml | 71 |
1 files changed, 71 insertions, 0 deletions
diff --git a/server/man/sssd-krb5.5.xml b/server/man/sssd-krb5.5.xml index 188cc913..4b26c029 100644 --- a/server/man/sssd-krb5.5.xml +++ b/server/man/sssd-krb5.5.xml @@ -91,6 +91,77 @@ </para> </listitem> </varlistentry> + + <varlistentry> + <term>krb5ccache_dir (string)</term> + <listitem> + <para> + Directory to store credential caches. + </para> + <para> + Default: /tmp + </para> + </listitem> + </varlistentry> + + <varlistentry> + <term>krb5ccname_template (string)</term> + <listitem> + <para> + Location of the user's credential cache. Currently + only file based credential caches are supported. In + the template the following sequences are + substituted: + <variablelist> + <varlistentry> + <term>%u</term> + <listitem><para>login name</para></listitem> + </varlistentry> + <varlistentry> + <term>%U</term> + <listitem><para>login UID</para></listitem> + </varlistentry> + <varlistentry> + <term>%p</term> + <listitem><para>principle name</para> + </listitem> + </varlistentry> + <varlistentry> + <term>%r</term> + <listitem><para>realm name</para></listitem> + </varlistentry> + <varlistentry> + <term>%h</term> + <listitem><para>home directory</para> + </listitem> + </varlistentry> + <varlistentry> + <term>%d</term> + <listitem><para>value of krb5ccache_dir + </para> + </listitem> + </varlistentry> + <varlistentry> + <term>%P</term> + <listitem><para>the process ID of the sssd + client</para> + </listitem> + </varlistentry> + <varlistentry> + <term>%%</term> + <listitem><para>a literal '%'</para> + </listitem> + </varlistentry> + </variablelist> + If the template ends with 'XXXXXX' mkstemp(3) is + used to create a unique filename in a safe way. + </para> + <para> + Default: FILE:%d/krb5cc_%U_XXXXXX + </para> + </listitem> + </varlistentry> + </variablelist> </para> </refsect1> |