[SSSD] [PATCH] Add enumerate details to the manpage and examples

[Stephen Gallagher]

Addresses https://fedorahosted.org/sssd/ticket/476

--
Stephen Gallagher
RHCE 804006346421761

Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/

From b9b5a76bb26acfd537c6438124349e2110103c82 Mon Sep 17 00:00:00 2001
From: Stephen Gallagher <sgall...@redhat.com>
Date: Wed, 19 May 2010 09:33:47 -0400
Subject: [PATCH] Add enumerate details to the manpage and examples

---
 src/examples/sssd.conf  |    4 ++--
 src/man/sssd.conf.5.xml |   20 +++++++++++++++++++-
 2 files changed, 21 insertions(+), 3 deletions(-)

diff --git a/src/examples/sssd.conf b/src/examples/sssd.conf
index 3b67dae..e93cf51 100644
--- a/src/examples/sssd.conf
+++ b/src/examples/sssd.conf
@@ -55,10 +55,10 @@ reconnection_retries = 3
 ; auth_provider = ldap
 ; ldap_schema = rfc2307
 ; ldap_uri = ldap://ldap.mydomain.org
-; ldap_user_search_base = dc=mydomain,dc=org
+; ldap_search_base = dc=mydomain,dc=org
 ; ldap_tls_reqcert = demand
 ; cache_credentials = true
-; enumerate = true
+; enumerate = False
 
 # Example LDAP domain where the LDAP server is an Active Directory server.
 
diff --git a/src/man/sssd.conf.5.xml b/src/man/sssd.conf.5.xml
index c7071ab..1689e34 100644
--- a/src/man/sssd.conf.5.xml
+++ b/src/man/sssd.conf.5.xml
@@ -435,6 +435,24 @@
                         <para>
                             Default: FALSE
                         </para>
+                        <para>
+                            Note: Enabling enumeration has a moderate
+                            performance impact on the SSSD while enumeration
+                            is running. It may take up to several minutes
+                            after SSSD startup to fully complete enumerations.
+                            During this time, individual requests for
+                            information will go directly to LDAP, though it
+                            may be slow, due to the heavy enumeration
+                            processing.
+                        </para>
+                        <para>
+                            Also, enabling enumeration may increase the time
+                            necessary to detect network disconnection, as
+                            longer timeouts are required to assure that
+                            enumeration lookups are completed successfully.
+                            For more information, see the manpages for the
+                            specific id_provider in use.
+                        </para>
                     </listitem>
                 </varlistentry>
 
@@ -848,7 +866,7 @@ cache_credentials = true
 
 min_id = 10000
 max_id = 20000
-enumerate = true
+enumerate = False
 </programlisting>
         </para>
     </refsect1>
-- 
1.7.0.1


_______________________________________________
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel