Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-07-30 | sudo ldap provider: support autoconfiguration of hostnames | Pavel Březina | 1 | -3/+3 | |
https://fedorahosted.org/sssd/ticket/1420 sudoHost attribute may contain hostname or fqdn of the machine. Sudo itself supports only one hostname and its fqdn - the one that is returned by gethostbyname(). This patch implements autoconfiguration of hostname and fqdn if it has not been set manually by ldap_sudo_hostnames option. | |||||
2012-07-06 | MAN: Unify "SEE ALSO" sections | Stephen Gallagher | 1 | -14/+2 | |
2012-06-29 | sudo: manpage updated | Pavel Březina | 1 | -8/+117 | |
Removes old options and adds new ones. | |||||
2012-06-13 | LDAP: Auto-detect support for the ldap match rule | Stephen Gallagher | 1 | -1/+13 | |
This patch extends the RootDSE lookup so that we will perform a second request to test whether the match rule syntax can be used. If both groups and initgroups are disabled in the configuration, this lookup request can be skipped. | |||||
2012-06-13 | LDAP: Add ldap_*_use_matching_rule_in_chain options | Stephen Gallagher | 1 | -0/+47 | |
2012-05-03 | MAN: Add manpage for ID mapping | Stephen Gallagher | 1 | -0/+21 | |
2012-05-03 | LDAP: Add objectSID config option | Stephen Gallagher | 1 | -0/+30 | |
2012-04-20 | Two manual pages fixes | Marco Pizzoli | 1 | -1/+1 | |
2012-04-18 | Fix erronous reference to the 'allow' access_provider | Stef Walter | 1 | -1/+1 | |
* Should be 'permit' instead https://fedorahosted.org/sssd/ticket/1295 Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | |||||
2012-04-18 | MAN: Add ldap_sasl_minssf to the manpage | Stephen Gallagher | 1 | -0/+16 | |
2012-04-18 | MAN: Improve ldap_disable_paging documentation | Stephen Gallagher | 1 | -1/+4 | |
2012-04-18 | man: document that referral chasing might bring performance penalty | Jakub Hrozek | 1 | -0/+8 | |
https://fedorahosted.org/sssd/ticket/1265 | |||||
2012-03-14 | LDAP: Add AD 2008r2 schema | Stephen Gallagher | 1 | -1/+4 | |
https://fedorahosted.org/sssd/ticket/1031 | |||||
2012-02-07 | fix typos in manual | Yuri Chornoivan | 1 | -1/+1 | |
2012-02-07 | Two sssd-ldap manual pages fixes | Jakub Hrozek | 1 | -4/+4 | |
Reported by Marco Pizzoli | |||||
2012-02-07 | LDAP: Add support for SSH user public keys | Jan Cholasta | 1 | -0/+10 | |
2012-02-06 | Update shadowLastChanged attribute during LDAP password change | Jan Zeleny | 1 | -2/+0 | |
https://fedorahosted.org/sssd/ticket/1019 | |||||
2012-02-05 | AUTOFS: LDAP provider | Jakub Hrozek | 1 | -0/+101 | |
2012-01-31 | LDAP: Add new options for service maps | Stephen Gallagher | 1 | -0/+70 | |
Adds the new service map options to the SSSDConfig API and the manpages. | |||||
2012-01-30 | Include sudo manual pages only conditionally | Jakub Hrozek | 1 | -6/+25 | |
2012-01-30 | SUDO Integration - manual page | Pavel Březina | 1 | -0/+188 | |
https://fedorahosted.org/sssd/ticket/1109 | |||||
2012-01-18 | LDAP: Add option to disable paging control | Stephen Gallagher | 1 | -0/+24 | |
Fixes https://fedorahosted.org/sssd/ticket/967 | |||||
2011-12-14 | Support search bases in RFC2307bis enumeration | Pavel Březina | 1 | -0/+7 | |
https://fedorahosted.org/sssd/ticket/960 | |||||
2011-12-12 | Add sdap_connection_expire_timeout option | Stephen Gallagher | 1 | -0/+17 | |
https://fedorahosted.org/sssd/ticket/1036 | |||||
2011-11-23 | Added and modified options for IPA netgroups | Jan Zeleny | 1 | -0/+22 | |
2011-11-10 | Fix typos in manual pages | Yuri Chornoivan | 1 | -1/+1 | |
2011-11-02 | Support to request canonicalization in LDAP/IPA provider | Jan Zeleny | 1 | -0/+15 | |
https://fedorahosted.org/sssd/ticket/957 | |||||
2011-11-02 | LDAP: Update manpages with multiple search base information | Stephen Gallagher | 1 | -1/+56 | |
2011-10-13 | man page fix (lists are comma-separated) | Jan Zeleny | 1 | -2/+2 | |
https://fedorahosted.org/sssd/ticket/1024 | |||||
2011-09-06 | Allow turning dereference off by setting the threshold to 0 | Jakub Hrozek | 1 | -0/+4 | |
2011-08-26 | Add LDAP provider option to set LDAP_OPT_X_SASL_NOCANON | Jakub Hrozek | 1 | -0/+14 | |
https://fedorahosted.org/sssd/ticket/978 | |||||
2011-07-08 | Add LDAP access control based on NDS attributes | Sumit Bose | 1 | -0/+50 | |
2011-05-31 | Changing default to Default for consistency | Kaushik Banerjee | 1 | -1/+1 | |
2011-05-27 | Add more detail to ldap_uri manpage entry | Stephen Gallagher | 1 | -1/+13 | |
2011-05-24 | Make "password" the default for ldap_default_authtok_type | Stephen Gallagher | 1 | -0/+3 | |
2011-05-20 | Use dereference when processing RFC2307bis nested groups | Jakub Hrozek | 1 | -0/+23 | |
Instead of issuing N LDAP requests when processing a group with N users, utilize the dereference functionality to pull down all the members in a single LDAP request. https://fedorahosted.org/sssd/ticket/799 | |||||
2011-04-27 | Add ldap_page_size configuration option | Stephen Gallagher | 1 | -0/+14 | |
2011-04-19 | Add user and group search LDAP filter options | Jakub Hrozek | 1 | -0/+37 | |
https://fedorahosted.org/sssd/ticket/647 | |||||
2011-03-24 | Add host access control support | Pierre Ossman | 1 | -0/+24 | |
https://fedorahosted.org/sssd/ticket/746 | |||||
2011-01-20 | Add ldap_tls_{cert,key,cipher_suite} config options | Tyson Whitehead | 1 | -0/+41 | |
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | |||||
2011-01-19 | Add LDAP expire policy base RHDS/IPA attribute | Sumit Bose | 1 | -0/+20 | |
The attribute nsAccountLock is used by RHDS, IPA and other directory servers to indicate that the account is locked. | |||||
2011-01-19 | Add LDAP expire policy based on AD attributes | Sumit Bose | 1 | -0/+35 | |
The second bit of userAccountControl is used to determine if the account is enabled or disabled. accountExpires is checked to see if the account is expired. | |||||
2011-01-17 | Add ldap_search_enumeration_timeout config option | Sumit Bose | 1 | -5/+23 | |
2010-12-21 | Add authorizedService support | Stephen Gallagher | 1 | -0/+26 | |
https://fedorahosted.org/sssd/ticket/670 | |||||
2010-12-07 | Replace krb5_kdcip by krb5_server in LDAP provider | Sumit Bose | 1 | -1/+7 | |
2010-12-06 | Add ldap_chpass_uri config option | Sumit Bose | 1 | -0/+34 | |
2010-12-06 | Add new account expired rule to LDAP access provider | Sumit Bose | 1 | -1/+54 | |
Two new options are added to the LDAP access provider to allow a broader range of access control rules to be evaluated. 'ldap_access_order' makes it possible to run more than one rule. To keep compatibility with older versions the default is 'filter'. This patch adds a new rule 'expire'. 'ldap_account_expire_policy' specifies which LDAP attribute should be used to determine if an account is expired or not. Currently only 'shadow' is supported which evaluates the ldap_user_shadow_expire attribute. | |||||
2010-12-01 | Allow protocol fallback for SRV queries | Jakub Hrozek | 1 | -0/+5 | |
https://fedorahosted.org/sssd/ticket/691 | |||||
2010-11-19 | Fix man page | Sumit Bose | 1 | -2/+2 | |
Currently sssd does not support authentication via GSSAPI. I think it is not necessary to support it, because if GSSAPI is possible Kerberos should be use for authentication. | |||||
2010-11-15 | Properly document ldap_purge_cache_timeout | Stephen Gallagher | 1 | -0/+19 | |
Also allow it to be disabled entirely |