Lukas Slebodnik wrote: > There is a way how to run sssd as non-root but /usr/sbin/sssd still require > bunch of linux capabilities to achieve that.
One more question, which I should have mentioned in my previous reply. Since there are few places in the code that check explicitly for root and exit with error if getuid() != 0 for example here https://github.com/SSSD/sssd/blob/master/src/monitor/monitor.c#L2449. Since these checks do not seem to be optional, adding capabilities alone do not help. How do the maintainers feel about making sssd run on OpenShift? Would this be something to pursue / possibly contribute to? -- Tero _______________________________________________ sssd-users mailing list -- sssd-users@lists.fedorahosted.org To unsubscribe send an email to sssd-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-users@lists.fedorahosted.org