Re: [SSSD] [PATCH] MAN: Update ppolicy description

Fri, 27 Mar 2015 03:01:24 -0700 

On 03/26/2015 06:09 PM, Stephen Gallagher wrote:

On Thu, 2015-03-26 at 17:51 +0100, Pavel Reichl wrote:

Hello,

please see this trivial patch.

I CCed Stephen in hope that he would be so kind and do the language
review.

Thanks!

"The value of 'pwdAccountLockedTime' attribute must end with 'Z' as
only UTC time zone is currently supported otherwise access is denied
for any other time specifications."

That's a bit awkward in English. May I suggest:

The value of the 'pwdAccountLockedTime' attribute must end with 'Z',
which denotes the UTC time zone. Other time zones are not currently
supported and will result in "access-denied" when users attempt to log
in.

Great, thanks!

Updated patch is attached.

>From 3285282e2c014e604ae48e09ea87f3f83f040514 Mon Sep 17 00:00:00 2001
From: Pavel Reichl <prei...@redhat.com>
Date: Thu, 26 Mar 2015 12:38:32 -0400
Subject: [PATCH] MAN: Update ppolicy description

Resolves:
https://fedorahosted.org/sssd/ticket/2612
---
 src/man/sssd-ldap.5.xml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml
index 6088a1286046cf4dd39cf934d91739723b99b300..83ec9b668fc129859646c01a0b690cabece0df32 100644
--- a/src/man/sssd-ldap.5.xml
+++ b/src/man/sssd-ldap.5.xml
@@ -1962,11 +1962,14 @@ ldap_access_filter = (employeeType=admin)
                             If set, this option denies access in case that ldap
                             attribute 'pwdAccountLockedTime' is present and has
                             value of '000001010000Z' or represents any time in the past.
-                            The value of 'pwdAccountLockedTime' attribute
-                            must end with 'Z' as only UTC time zone is
-                            currently suported. Please see the option
-                            ldap_pwdlockout_dn.
 
+                            The value of the 'pwdAccountLockedTime' attribute
+                            must end with 'Z', which denotes the UTC time zone.
+                            Other time zones are not currently supported and
+                            will result in "access-denied" when users attempt
+                            to log in.
+
+                            Please see the option ldap_pwdlockout_dn.
                             Please note that 'access_provider = ldap' must
                             be set for this feature to work.
                         </para>
-- 
2.1.0


_______________________________________________
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel

Reply via email to