Re: [SSSD] [PATCH] GPO: Check return value of ad_gpo_store_policy_settings

On (01/04/15 14:00), Jakub Hrozek wrote: >On Wed, Apr 01, 2015 at 12:22:41PM +0200, Pavel Reichl wrote: >> ACK, >> ci passed: http://sssd-ci.duckdns.org/logs/job/12/43/summary.html > >* master: 818c55be478ca2539a86567280114e823d79a51f IHMO, such kind of error should be fixed in 1.12 as well. LS __

Re: [SSSD] [PATCH] LDAP: drop lockout option from ldap_access_order

On 03/25/2015 12:01 PM, Pavel Reichl wrote: Hello please see attached patch. The need for this patch was discussed in thread: SDAP: Lock out ssh keys when account naturally expires This patch implements point number 3. I would prefer if we didn't add a new option as well, but since we releas

Re: [SSSD] [PATCH] LDAP: warn about lockout option being deprecated

On 03/25/2015 10:19 AM, Pavel Reichl wrote: Hello, attached patch deprecates lockout option in 1-12 branch. This was discussed in thread: SDAP: Lock out ssh keys when account naturally expires This patch implements point number 2. I would prefer if we didn't add a new option as well, but s

Re: [SSSD] [PATCH] Improve negcache with subdomains

On (30/03/15 11:47), Jakub Hrozek wrote: >Hi, > >I noticed this bug while working on the SSH fix with >default_domain_suffix. It turns out our filter_users/filter_groups don't >work well in this scenario, which might have effect on the server load >even. Attached are patches that re-initialize negc