sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2011-05-05	Added some kerberos functions for building on RHEL5	Jan Zeleny	1	-0/+10

2011-04-25	Modify principal selection for keytab authentication	Jan Zeleny	1	-0/+8
	Currently we construct the principal as host/fqdn@REALM. The problem with this is that this principal doesn't have to be in the keytab. In that case the provider fails to start. It is better to scan the keytab and find the most suitable principal to use. Only in case no suitable principal is found the backend should fail to start. The second issue solved by this patch is that the realm we are authenticating the machine to can be in general different from the realm our users are part of (in case of cross Kerberos trust). The patch adds new configuration option SDAP_SASL_REALM. https://fedorahosted.org/sssd/ticket/781
2011-04-25	Extend and move function for finding principal in keytab	Jan Zeleny	1	-0/+6
	The function now supports finding principal in keytab not only based on realm, but based on both realm and primary/instance parts. The function also supports * wildcard at the beginning or at the end of primary principal part. The function for finding principal has been moved to util/sss_krb5.c, so it can be used in other parts of the code.
2010-12-08	Fix build issue with older Kerberos library	Sumit Bose	1	-0/+7

2010-12-07	Add support for FAST in krb5 provider	Sumit Bose	1	-0/+14

2010-09-23	Use new MIT krb5 API for better password expiration warnings	Sumit Bose	1	-1/+12

2010-08-03	Validate keytab at startup	Jakub Hrozek	1	-0/+9
	In addition to validating the keytab everytime a TGT is requested, we also validate the keytab on back end startup to give early warning that the keytab is not usable. Fixes: #556
2010-02-18	Rename server/ directory to src/	Stephen Gallagher	1	-0/+50
	Also update BUILD.txt