[SSSD-users] authenticating against all sub-domains in AD forest

Hi, I am testing find a standard config for Linux authentication against Active Directory and I am testing with Centos 6. I have decided on a SSSD/Kerberos/LDAP configuration as described in RedHats Integrating Red Hat Enterprise Linux 6 with Active Directory section 6.3.

[SSSD-users] Active Directory parent-child trust

Hello List, I've built sssd-1.11.90 from git source for a CentOS 6.4 server. I want to set up a connection with SSSD to 2 Active Directory domains (both Windows 2003 functional level), parent and child, so they have a parent-child transitive trust: ad.example.com \_child.ad.example.com I've

Re: [SSSD-users] Active Directory parent-child trust

On Mon, Sep 16, 2013 at 07:31:13PM +0200, Alfredo Colangelo wrote: Hello List, I've built sssd-1.11.90 from git source for a CentOS 6.4 server. I want to set up a connection with SSSD to 2 Active Directory domains (both Windows 2003 functional level), parent and child, so they have a

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

Hi Jakub, I would definitely use that ad_access_filter feature. In fact that is how I expected it was going to work and tried it out originally. It would also be cool if there was a way to specify users and groups that did not require the whole distinguished name. A ldap-simple mode if you