Re: [SSSD] Design Discussion: Improving AD provider access control

On Fri, Sep 13, 2013 at 02:57:56PM +0200, Jakub Hrozek wrote: > === Implementation details === > 1. The default value of what AD access_provider is set to should be changed > * Currently, if `access_provider` is not set explicitly, the default is > `permit`, thus allowing even expired accounts >

Re: [SSSD] SSSD Internals Document published

I think this document deserves some recognition; it's very informative and thorough. Good work! -Chris On Thu, Oct 17, 2013 at 5:57 PM, Yassir Elley wrote: > The SSSD team has published an SSSD Internals Document, which can be found > at https://fedorahosted.org/sssd/wiki/InternalsDocs. If the

[SSSD] automatic renewal of TGT for IPA users

In sssd InternalsDocs, there is a statement: "SSSD can automatically renew the TGT at a configurable interval". Can someone give me a pointer as how I can configure sssd to do it? I am using krenew for the same effect, thought a native way would be much better... Many thanks, Qing

Re: [SSSD] automatic renewal of TGT for IPA users

On Fri, 18 Oct 2013, Qing Chang wrote: In sssd InternalsDocs, there is a statement: "SSSD can automatically renew the TGT at a configurable interval". Can someone give me a pointer as how I can configure sssd to do it? I am using krenew for the same effect, thought a native way would be much b

Re: [SSSD] [INI][PATCHES] Allow c-style comments in config files

On 10/17/2013 10:39 AM, Lukas Slebodnik wrote: > On (06/10/13 12:29), Dmitri Pal wrote: >> Hello >> >> The following patch set addresses ticket >> https://fedorahosted.org/sssd/ticket/2108 >> >> Please see commit messages for more details about what each patch does. >> Please follow the order of th

Re: [SSSD] [INI] [PATCHES] Add UTF 8/16/32 conversion

On 10/17/2013 06:56 AM, Lukas Slebodnik wrote: > On (10/10/13 23:03), Dmitri Pal wrote: >> Hello, >> >> The attached patches address ticket >> https://fedorahosted.org/sssd/ticket/2106 >> The patches do not define new flags as suggested in the ticket. >> As we discussed with Nalin we try to detect

Re: [SSSD] SSSD Internals Document published

On Thu, 2013-10-17 at 17:57 -0400, Yassir Elley wrote: > The SSSD team has published an SSSD Internals Document, which can be found at > https://fedorahosted.org/sssd/wiki/InternalsDocs. If there are any mistakes > in the document, feel free to modify the document. Standing Ovation! This docume

Re: [SSSD] Design Discussion: Improving AD provider access control

On Fri, 2013-10-18 at 13:26 +0200, Jakub Hrozek wrote: > On Fri, Sep 13, 2013 at 02:57:56PM +0200, Jakub Hrozek wrote: > > === Implementation details === > > 1. The default value of what AD access_provider is set to should be changed > > * Currently, if `access_provider` is not set explicitly, th