The cache for a specific system user is always checked and updated whenever
that user performs a task. However, SSSD caches all rules which relate to the
local system. That complete cache is updated in two ways:
-Incrementally, meaning only changes to rules since the last full update
(ldap_sudo
This would necessarily refetching rules this would clearing out the cache of
the ldap database on the client system. Sorry if I was cryptic.
I know if you use openldap you can set a timeout for it refresh the database.
Is there a way to do that w/ FreeIPA?
On Thursday, November 9, 2017 1
On Wed, Nov 08, 2017 at 03:52:57PM +, Andrew Meyer via FreeIPA-users wrote:
> Let's say I have a user that starts today and I forgot to add their
> username to FreeIPA. I add their username and they need to start working
> fairly quickly. I know that I can clear the sudo cache on each server