diff options
Diffstat (limited to 'src/man/sssd-ldap.5.xml')
| -rw-r--r-- | src/man/sssd-ldap.5.xml | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml index e554cac4..7c364abe 100644 --- a/src/man/sssd-ldap.5.xml +++ b/src/man/sssd-ldap.5.xml @@ -493,6 +493,47 @@ </varlistentry> <varlistentry> + <term>ldap_user_nds_login_disabled (string)</term> + <listitem> + <para> + When using ldap_account_expire_policy=nds, this + attribute determines if access is allowed or not. + </para> + <para> + Default: loginDisabled + </para> + </listitem> + </varlistentry> + + <varlistentry> + <term>ldap_user_nds_login_expiration_time (string)</term> + <listitem> + <para> + When using ldap_account_expire_policy=nds, this + attribute determines until which date access is + granted. + </para> + <para> + Default: loginDisabled + </para> + </listitem> + </varlistentry> + + <varlistentry> + <term>ldap_user_nds_login_allowed_time_map (string)</term> + <listitem> + <para> + When using ldap_account_expire_policy=nds, this + attribute determines the hours of a day in a week + when access is granted. + </para> + <para> + Default: loginAllowedTimeMap + </para> + </listitem> + </varlistentry> + + <varlistentry> <term>ldap_user_principal (string)</term> <listitem> <para> @@ -1296,6 +1337,15 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com access is allowed or not. </para> <para> + <emphasis>nds</emphasis>: the values of + ldap_user_nds_login_allowed_time_map, + ldap_user_nds_login_disabled and + ldap_user_nds_login_expiration_time are used to + check if access is allowed. If both attributes are + missing access is granted. + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="include/experimental.xml" /> + </para> + <para> Default: Empty </para> </listitem> |