I have a question - is it possible to use AD trust the way that:
1. All users are stored in AD
2. All Unix specific information (automount maps, sudo rules, HBAC rules) are
stored in IPA?
If yes then:
1. Will this scenario honour the RFC2307 user attributes in AD?
2. How is the best way to implement this? Imagine AD realm EXAMPLE.COM. Which
realm I should chose for IPA? How about DNS?
Freeipa-users mailing list