On Wed, May 15, 2019 at 07:30:02AM -0000, Edvin Norling wrote: > Hi > > Due to legacy reasons the place where i work need SSSD inside a container and > we want to use SIP-TLS client side certificates. > These certificates have a short liveliness and we generate a new one every > day.
Hi, for what is this certificate used? Are you using this with the ldap_tls_cert option to authenticate the client against an LDAP server? In this case a sequence of SIGUSR1 and SIGUSR2 to switch SSSD into offline mode and back might help, please see 'man sssd' for details. bye, Sumit > > Right now we have a written a small python script to listen for the new > certificate and restart SSSD but it would be much nicer if we can send a > SIGHUP instead. > Is this something that would be interesting? If so me and my team could give > it a try to implement this. > But we don't want to put in those hours if this is a feature you don't want. > > Thanks for any feedback. > Regards Edvin > _______________________________________________ > sssd-devel mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] _______________________________________________ sssd-devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
