Re: [SSSD-users] how do I restrict access when access_provider = ad ?

On Mon, Sep 16, 2013 at 10:34:58AM -0700, Doug Clow wrote: > Hi Jakub, > > I would definitely use that ad_access_filter feature. In fact that is how I > expected it was going to work and tried it out originally. Great, thank you! I flagged your e-mail so that I ping you when the new feature is

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

Hi Jakub, I would definitely use that ad_access_filter feature. In fact that is how I expected it was going to work and tried it out originally. It would also be cool if there was a way to specify users and groups that did not require the whole distinguished name. A ldap-simple mode if you w

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

On Fri, Sep 13, 2013 at 03:04:42PM +0200, Jakub Hrozek wrote: > On Mon, Sep 09, 2013 at 09:57:35AM -0700, Doug Clow wrote: > > Thank you Jakub, > > > > Those settings you gave me to minimally add back the ldap access_provider > > worked perfectly. All is working well again! > > > > Best, > > Do

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

On Mon, Sep 09, 2013 at 09:57:35AM -0700, Doug Clow wrote: > Thank you Jakub, > > Those settings you gave me to minimally add back the ldap access_provider > worked perfectly. All is working well again! > > Best, > Doug > > Hi Doug, I'm glad the access control is working for you now. We wer

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

Thank you Jakub, Those settings you gave me to minimally add back the ldap access_provider worked perfectly. All is working well again! Best, Doug On Sep 8, 2013, at 2:59 PM, Jakub Hrozek wrote: > On Sat, Sep 07, 2013 at 07:16:09PM -0400, Dmitri Pal wrote: >> On 09/07/2013 02:23 PM, Doug C

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

On Sat, Sep 07, 2013 at 07:16:09PM -0400, Dmitri Pal wrote: > On 09/07/2013 02:23 PM, Doug Clow wrote: > > Hello, > > > > I recently switched my sssd to 1.9 so I can try the native Active > > Directory support. Previously I was using: > > > > id_provider = ldap > > auth_provider = krb5 > > chpass_

Re: [SSSD-users] how do I restrict access when access_provider = ad ?

On 09/07/2013 02:23 PM, Doug Clow wrote: > Hello, > > I recently switched my sssd to 1.9 so I can try the native Active > Directory support. Previously I was using: > > id_provider = ldap > auth_provider = krb5 > chpass_provider = krb5 > access_provider = ldap > > And now with 1.9 I'm using: > > i

[SSSD-users] how do I restrict access when access_provider = ad ?

Hello, I recently switched my sssd to 1.9 so I can try the native Active Directory support. Previously I was using: id_provider = ldap auth_provider = krb5 chpass_provider = krb5 access_provider = ldap And now with 1.9 I'm using: id_provider = ad auth_provider = ad chpass_provider = ad access