summaryrefslogtreecommitdiff
path: root/src/man
diff options
context:
space:
mode:
authorSumit Bose <sbose@redhat.com>2013-05-02 20:28:30 +0200
committerJakub Hrozek <jhrozek@redhat.com>2013-05-07 14:12:06 +0200
commit4cdaf239d4504966bed8ecd5e3fa07def74c7302 (patch)
tree34ceec2ae3c01723e4337e09718569d786d8ed13 /src/man
parent41bfa213a0994cebcef5f69fd2c353136c803ae4 (diff)
downloadsssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.gz
sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.tar.bz2
sssd-4cdaf239d4504966bed8ecd5e3fa07def74c7302.zip
AD: read flat name and SID of the AD domain
For various features either the flat/short/NetBIOS domain name or the domain SID is needed. Since the responders already try to do a subdomain lookup when and known domain name is encountered I added a subdomain lookup to the AD provider which currently only reads the SID from the base DN and the NetBIOS name from a reply of a LDAP ping. The results are written to the cache to have them available even if SSSD is started in offline mode. Looking up trusted domains can be added later. Since all the needed responder code is already available from the corresponding work for the IPA provider this patch fixes https://fedorahosted.org/sssd/ticket/1468
Diffstat (limited to 'src/man')
-rw-r--r--src/man/sssd-ad.5.xml4
-rw-r--r--src/man/sssd.conf.5.xml4
2 files changed, 8 insertions, 0 deletions
diff --git a/src/man/sssd-ad.5.xml b/src/man/sssd-ad.5.xml
index c1960771..4dcd552d 100644
--- a/src/man/sssd-ad.5.xml
+++ b/src/man/sssd-ad.5.xml
@@ -95,6 +95,10 @@ ldap_id_mapping = False
specified as the lower-case version of the long
version of the Active Directory domain.
</para>
+ <para>
+ The short domain name (also known as the NetBIOS
+ or the flat name) is autodetected by the SSSD.
+ </para>
</listitem>
</varlistentry>
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index 04c69994..99337fbb 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -1481,6 +1481,10 @@ override_homedir = /home/%u
Regular expression for this domain that describes
how to parse the string containing user name and
domain into these components.
+ The "domain" can match either the SSSD
+ configuration domain name, or, in the case
+ of IPA trust subdomains and Active Directory
+ domains, the flat (NetBIOS) name of the domain.
</para>
<para>
Default for the AD and IPA provider: