-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Small changes to the example config and manpage
Remove magicPrivateGroups since it's set automatically, use bool values for enumerate. Also add a notice about krb5 auth-module with a link to specialized manpage to sssd.conf(5) similar to what we have for ldap auth-module. Move both outside proxy domain description. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkqpcoMACgkQHsardTLnvCXzdwCdFE7qrQuaZAwGQu9iryhHptIi uQcAoI2TqYqxipjiLMwVbUzUGScFNXc6 =d60v -----END PGP SIGNATURE-----
>From 397f13436843eb10b4ded281e8626cbbfd7353d8 Mon Sep 17 00:00:00 2001 From: Jakub Hrozek <[email protected]> Date: Thu, 10 Sep 2009 14:36:17 +0200 Subject: [PATCH] Small changes to the example config and manpage Remove magicPrivateGroups since it's set automatically, use bool values for enumerate. Also add a notice about krb5 auth-module with a link to specialized manpage to sssd.conf(5) similar to what we have for ldap auth-module. Move both outside proxy domain description. --- server/examples/sssd.conf | 10 ++++------ server/man/sssd.conf.5.xml | 37 +++++++++++++++++++++++++------------ 2 files changed, 29 insertions(+), 18 deletions(-) diff --git a/server/examples/sssd.conf b/server/examples/sssd.conf index b47ab9d..3c4ccbf 100644 --- a/server/examples/sssd.conf +++ b/server/examples/sssd.conf @@ -49,9 +49,8 @@ description = Domains served by SSSD ; [domains/LOCAL] ; description = LOCAL migration domain -; enumerate = 3 +; enumerate = true ; minId = 500 -; magicPrivateGroups = FALSE ; legacy = TRUE ; ; provider = files @@ -68,11 +67,10 @@ description = Domains served by SSSD ; [domains/LOCAL] ; description = LOCAL Users domain ; provider = local -; enumerate = 3 +; enumerate = true ; minId = 500 ; maxId = 999 ; legacy = FALSE -; magicPrivateGroups = TRUE # Example LDAP domain that uses the proxy backend and the standard nss_ldap # and pam_ldap modules (Useful until we have good working native ldap backends). @@ -88,7 +86,7 @@ description = Domains served by SSSD ; [domains/LDAP] ; description = Proxy request to our LDAP server -; enumerate = 0 +; enumerate = false ; minId = 1000 ; legacy = TRUE ; @@ -102,7 +100,7 @@ description = Domains served by SSSD ; [domains/AD] ; description = LDAP domain with AD server -; enumerate = 0 +; enumerate = false ; minId = 1000 ; ; provider = ldap diff --git a/server/man/sssd.conf.5.xml b/server/man/sssd.conf.5.xml index 0432f1e..1bf7287 100644 --- a/server/man/sssd.conf.5.xml +++ b/server/man/sssd.conf.5.xml @@ -560,26 +560,39 @@ </para> </listitem> </varlistentry> - </variablelist> - </para> - - <para> - Options valid for proxy domains. - - <variablelist> <varlistentry> <term>auth-module (string)</term> <listitem> <para> - The authentication module used. Two - authentication modules are provided - - <quote>ldap</quote> for native LDAP authentication - and <quote>proxy</quote>, used for relaying - authentication to some other PAM target. + The authentication module used for the domain. + Supported auth modules are: + </para> + <para> + <quote>ldap</quote> for native LDAP authentication. See + <citerefentry> + <refentrytitle>sssd-ldap</refentrytitle> + <manvolnum>5</manvolnum> + </citerefentry> for more information on configuring LDAP. + </para> + <para> + <quote>krb5</quote> for Kerberos authentication. See + <citerefentry> + <refentrytitle>sssd-krb5</refentrytitle> + <manvolnum>5</manvolnum> + </citerefentry> for more information on configuring Kerberos. + </para> + <para> + <quote>proxy</quote> for relaying authentication to some other PAM target. </para> </listitem> </varlistentry> + </variablelist> + </para> + <para> + Options valid for proxy domains. + + <variablelist> <varlistentry> <term>pam-target (string)</term> <listitem> -- 1.6.2.5
_______________________________________________ sssd-devel mailing list [email protected] https://fedorahosted.org/mailman/listinfo/sssd-devel
