Please see the attached man page patch that addresses: https://fedorahosted.org/sssd/ticket/2281
>From 2e2253eca96b86db06bc93d3f63a6f6332372756 Mon Sep 17 00:00:00 2001 From: Jakub Hrozek <jhro...@redhat.com> Date: Tue, 3 Jun 2014 08:14:12 +0200 Subject: [PATCH] MAN: Document that each provider type uses its own set of options
https://fedorahosted.org/sssd/ticket/2281 Many users were configuring the combination of id_provider=ad access_provider=ldap expecting that the access_provider would use the same serves the id_provider does. That's not the case, each provider type must be configured separately. --- src/man/sssd-ad.5.xml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/man/sssd-ad.5.xml b/src/man/sssd-ad.5.xml index 9070144ce4f478d20e93c8b7a4f732b56de98836..d8c423541311922bb6d6eeec32df475a930fd1ba 100644 --- a/src/man/sssd-ad.5.xml +++ b/src/man/sssd-ad.5.xml @@ -481,7 +481,10 @@ ldap_account_expire_policy = ad <para> However, unless the <quote>ad</quote> access control provider is explicitly configured, the default access provider is - <quote>permit</quote>. + <quote>permit</quote>. Please note that if you configure an + access provider other than <quote>ad</quote>, you need to set + all the connection parameters (such as LDAP URIs and encryption + details) manually. </para> </refsect1> -- 1.9.0
_______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
