darknao / fedora-infra / ansible

Forked from fedora-infra/ansible 3 years ago
Clone
Source Code
GIT

f7519b4 Allow sssd to ignore special users

Authored and Committed by Stephen Smoogen 3 years ago
raw patch tree parent
2 files changed. 13 lines added. 0 lines removed.
roles/ipa/client/files/fedora-nss-ignore.conf
file added
+6
roles/ipa/client/tasks/common.yml
file modified
+7 -0 
    Allow sssd to ignore special users
    
    Currently /etc/nsswitch.conf has configurations like
    
    passwd:     sss files
    shadow:     files sss
    group:      sss files
    
    The problem is that to make sure that certain users could not be
    created in IPA (like nobody root etc), they were already created but
    in a restricted group. In order to allow sss to work for postfix, nfs,
    nobody and such, the sssd.conf needs to ignore them in the nss
    section. This adds a file which will do that.
    
    Signed-off-by: Stephen Smoogen <smooge@smoogespace.com>
file added
+6
file modified
+7 -0
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.