Learn more about these different git repos.
Other Git URLs
We use freeipa for auth management with some local (mostly monitoring) users being present. We feed sudo from ldap, but again, we have local sudo rules for these local users. Even with filter_users and/or filter_groups parameters present, sssd constantly asks for these local users (including user root that should be omitted by default setting) causing heavy load on our freeipa LDAP.
We're using SL 6.6, no modification to sssd code on our side.
cc: => email@example.com
owner: somebody => atkac
Please let us know if you'd like the patch to be pushed to other branches as well. 6.7 will have 1.12.x, I can advise to open a RH support case :-)
milestone: NEEDS_TRIAGE => SSSD 1.13 alpha
owner: atkac => jhrozek
owner: jhrozek => atkac
resolution: => fixed
status: new => closed
Yes, it would be nice to have fix in 1.12.X as well, can you please backport it? (simple cherry-pick works fine) Thanks in advance!
sure, pushed to sssd-1-12: d008c23
Please note RHEL-6.7 already rebased and we're cherry-picking patches already, so including this patch to RHEL must go through the usual RHEL process.
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1212017 (Red Hat Enterprise Linux 6)
rhbz: => [https://bugzilla.redhat.com/show_bug.cgi?id=1212017 1212017]
Metadata Update from @blesk:
- Issue assigned to atkac
- Issue set to the milestone: SSSD 1.13 alpha
to comment on this ticket.