diff options
-rw-r--r-- | server/examples/sssd.conf | 10 | ||||
-rw-r--r-- | server/man/sssd.conf.5.xml | 37 |
2 files changed, 29 insertions, 18 deletions
diff --git a/server/examples/sssd.conf b/server/examples/sssd.conf index b47ab9dd..3c4ccbfd 100644 --- a/server/examples/sssd.conf +++ b/server/examples/sssd.conf @@ -49,9 +49,8 @@ description = Domains served by SSSD ; [domains/LOCAL] ; description = LOCAL migration domain -; enumerate = 3 +; enumerate = true ; minId = 500 -; magicPrivateGroups = FALSE ; legacy = TRUE ; ; provider = files @@ -68,11 +67,10 @@ description = Domains served by SSSD ; [domains/LOCAL] ; description = LOCAL Users domain ; provider = local -; enumerate = 3 +; enumerate = true ; minId = 500 ; maxId = 999 ; legacy = FALSE -; magicPrivateGroups = TRUE # Example LDAP domain that uses the proxy backend and the standard nss_ldap # and pam_ldap modules (Useful until we have good working native ldap backends). @@ -88,7 +86,7 @@ description = Domains served by SSSD ; [domains/LDAP] ; description = Proxy request to our LDAP server -; enumerate = 0 +; enumerate = false ; minId = 1000 ; legacy = TRUE ; @@ -102,7 +100,7 @@ description = Domains served by SSSD ; [domains/AD] ; description = LDAP domain with AD server -; enumerate = 0 +; enumerate = false ; minId = 1000 ; ; provider = ldap diff --git a/server/man/sssd.conf.5.xml b/server/man/sssd.conf.5.xml index 0432f1ec..1bf72872 100644 --- a/server/man/sssd.conf.5.xml +++ b/server/man/sssd.conf.5.xml @@ -560,26 +560,39 @@ </para> </listitem> </varlistentry> - </variablelist> - </para> - - <para> - Options valid for proxy domains. - - <variablelist> <varlistentry> <term>auth-module (string)</term> <listitem> <para> - The authentication module used. Two - authentication modules are provided - - <quote>ldap</quote> for native LDAP authentication - and <quote>proxy</quote>, used for relaying - authentication to some other PAM target. + The authentication module used for the domain. + Supported auth modules are: + </para> + <para> + <quote>ldap</quote> for native LDAP authentication. See + <citerefentry> + <refentrytitle>sssd-ldap</refentrytitle> + <manvolnum>5</manvolnum> + </citerefentry> for more information on configuring LDAP. + </para> + <para> + <quote>krb5</quote> for Kerberos authentication. See + <citerefentry> + <refentrytitle>sssd-krb5</refentrytitle> + <manvolnum>5</manvolnum> + </citerefentry> for more information on configuring Kerberos. + </para> + <para> + <quote>proxy</quote> for relaying authentication to some other PAM target. </para> </listitem> </varlistentry> + </variablelist> + </para> + <para> + Options valid for proxy domains. + + <variablelist> <varlistentry> <term>pam-target (string)</term> <listitem> |