On Mon, Jun 17, 2013 at 02:03:35AM +0000, greg.lehm...@csiro.au wrote: > Hi All, > We have Active Directory working with sssd for most clients. > In some of our HPC environments we use a 10.0.x.x subnet for the compute > nodes. They have no direct access to AD but can connect to head nodes which > do have access to AD. Is there some way to run sssd in a slave server or > proxy mode on the head nodes so compute nodes can still have access to > authorisation information from AD?
no, there is no such mode in sssd. Would it be possilbe to enable port forwarding to the AD servers on the head nodes for LDAP and Kerberos? bye, Sumit > > TIA, > > Greg Lehmann > Cluster Services, ASC > CSIRO Information Management and Technology > > Phone: +61 7 3327 4137 | Fax: +61 1 3327 4455 > greg.lehm...@csiro.au | www.csiro.au > Address: 1 Technology Court, Pullenvale, QLD 4069 > > PLEASE NOTE > The information contained in this email may be confidential or privileged. > Any unauthorised use or disclosure is prohibited. If you have received this > email in error, please delete it immediately and notify the sender by return > email. Thank you. To the extent permitted by law, CSIRO does not represent, > warrant and/or guarantee that the integrity of this communication has been > maintained or that the communication is free of errors, virus, interception > or interference. > > Please consider the environment before printing this email. > > _______________________________________________ > sssd-devel mailing list > sssd-devel@lists.fedorahosted.org > https://lists.fedorahosted.org/mailman/listinfo/sssd-devel _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
