Learn more about these different git repos.
Other Git URLs
FreeIPA uses slapi-nis compat tree so that the legacy hosts (without recent SSSD) can be configured to use LDAP authentication to authenticate IPA or AD users from trusted AD domains:
http://www.freeipa.org/page/V3/Serving_legacy_clients_for_trusts
Password change should work both for IPA clients and AD clients. As we have enough attributes in the synthesized entry to distinguish IPA user from an AD user, we can try to add password modify callback that uses PAM stack. It doesn't need pam_passthru.
pam_passthru
RH Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1084304
Login to comment on this ticket.