diff options
author | Sumit Bose <sbose@redhat.com> | 2013-05-02 20:28:30 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2013-05-07 14:12:06 +0200 |
commit | 4cdaf239d4504966bed8ecd5e3fa07def74c7302 (patch) | |
tree | 34ceec2ae3c01723e4337e09718569d786d8ed13 /src/man | |
parent | 41bfa213a0994cebcef5f69fd2c353136c803ae4 (diff) | |
download | sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.gz sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.bz2 sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.zip |
AD: read flat name and SID of the AD domain
For various features either the flat/short/NetBIOS domain name or the
domain SID is needed. Since the responders already try to do a subdomain
lookup when and known domain name is encountered I added a subdomain
lookup to the AD provider which currently only reads the SID from the
base DN and the NetBIOS name from a reply of a LDAP ping. The results
are written to the cache to have them available even if SSSD is started
in offline mode. Looking up trusted domains can be added later.
Since all the needed responder code is already available from the
corresponding work for the IPA provider this patch fixes
https://fedorahosted.org/sssd/ticket/1468
Diffstat (limited to 'src/man')
-rw-r--r-- | src/man/sssd-ad.5.xml | 4 | ||||
-rw-r--r-- | src/man/sssd.conf.5.xml | 4 |
2 files changed, 8 insertions, 0 deletions
diff --git a/src/man/sssd-ad.5.xml b/src/man/sssd-ad.5.xml index c1960771..4dcd552d 100644 --- a/src/man/sssd-ad.5.xml +++ b/src/man/sssd-ad.5.xml @@ -95,6 +95,10 @@ ldap_id_mapping = False specified as the lower-case version of the long version of the Active Directory domain. </para> + <para> + The short domain name (also known as the NetBIOS + or the flat name) is autodetected by the SSSD. + </para> </listitem> </varlistentry> diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml index 04c69994..99337fbb 100644 --- a/src/man/sssd.conf.5.xml +++ b/src/man/sssd.conf.5.xml @@ -1481,6 +1481,10 @@ override_homedir = /home/%u Regular expression for this domain that describes how to parse the string containing user name and domain into these components. + The "domain" can match either the SSSD + configuration domain name, or, in the case + of IPA trust subdomains and Active Directory + domains, the flat (NetBIOS) name of the domain. </para> <para> Default for the AD and IPA provider: |