diff options
| author | Jakub Hrozek <jhrozek@redhat.com> | 2011-04-29 15:59:17 +0200 |
|---|---|---|
| committer | Stephen Gallagher <sgallagh@redhat.com> | 2011-05-20 07:21:45 -0400 |
| commit | 7bdaf2a712d73763e7c3d25f6bb544b18f7028eb (patch) | |
| tree | dca11da1c2c4b258d4bc33aed583d9ba48147f27 /src/man | |
| parent | 6b95a91c1a49c2eff480820cfd8be51d70a29ffe (diff) | |
| download | sssd-7bdaf2a712d73763e7c3d25f6bb544b18f7028eb.tar.gz sssd-7bdaf2a712d73763e7c3d25f6bb544b18f7028eb.tar.bz2 sssd-7bdaf2a712d73763e7c3d25f6bb544b18f7028eb.zip | |
Use dereference when processing RFC2307bis nested groups
Instead of issuing N LDAP requests when processing a group with N users,
utilize the dereference functionality to pull down all the members in a
single LDAP request.
https://fedorahosted.org/sssd/ticket/799
Diffstat (limited to 'src/man')
| -rw-r--r-- | src/man/sssd-ldap.5.xml | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml index 49c9e491..42ea848a 100644 --- a/src/man/sssd-ldap.5.xml +++ b/src/man/sssd-ldap.5.xml @@ -869,6 +869,29 @@ </varlistentry> <varlistentry> + <term>ldap_deref_threshold (integer)</term> + <listitem> + <para> + Specify the number of group members that must be + missing from the internal cache in order to trigger + a dereference lookup. If less members are missing, + they are looked up individually. + </para> + <para> + A dereference lookup is a means of fetching all + group members in a single LDAP call. + Different LDAP servers may implement different + dereference methods. The currently supported + servers are 389/RHDS, OpenLDAP and Active + Directory. + </para> + <para> + Default: 10 + </para> + </listitem> + </varlistentry> + + <varlistentry> <term>ldap_tls_reqcert (string)</term> <listitem> <para> |